I have an SG300-10P but it doesn't seem to working as expected, so I need some help getting the configuraiton correct. I have a workstation on a vlan (998) but it can't ping a host on the internet (184.108.40.206) but from the switch I can ping 220.127.116.11. I'm sure I'm missing something basic/obvious, but missing it. It looks like the switch will not send traffic back from 192.168.0.2 to 10.47.100.1?
Switch is in Layer 3 mode.
Workstation (10.47.100.150 w/ gateway 10.47.100.1) is on port 3, vlan 998
Firewall (192.168.0.1) is on port 2, vlan 1
vlan1 ip is 192.168.0.2
vlan 998 ip is 10.47.100.1
The interface on the firewall/router is 192.168.0.1. The firewall has a the reverse route on it telling it that in order to reach 10.47.100.1, it has to go through 192.168.0.2. I have a route on the switch telling it to go to 192.168.0.1 for 0.0.0.0.
-PC can ping the firewall (192.168.0.1), vlan1 (192.168.0.2), and vlan 998 (10.47.100.1). It cannot ping google dns 18.104.22.168
-The switch can ping google 22.214.171.124, the firewall (192.168.0.1), vlan 1 (126.96.36.199), and vlan 998 (10.47.100.1), and the workstation (10.47.100.150)
In case anyone else ever has this issue, I solved it, but not with an SG300. It appears the that SG300 can do intervlan routing but not route internally from an interface. If it does do it, it wasn't documented so I gave up and put in a router.
In short, you need a Cisco router with at least 2 ethernet interfaces with the following configuration:
description Direct connect to firewall
ip address 192.168.0.2 255.255.255.0
ip nat outside
description To Internal Network Cisco Switch
ip address 10.47.100.1 255.255.255.0
ip nat inside
ip default-gateway 192.168.0.1
ip route 0.0.0.0 0.0.0.0 192.168.0.1
ip nat inside source list 1 interface GigabitEthernet0/0 overload
access-list 1 permit 10.47.100.0 0.0.0.255
You could probably do routing on a stick (one interface) and some type of vlan setup, but this was easier to implement.
[toc:faq]Introduction: This document describes how to connect SG300 with
Catalyst switch via STP. Spanning Tree Protocol (STP) is a Layer 2
protocol that runs on mainly on switches. The specification for STP is
IEEE 802.1D. The main purpose of STP is to e...
The Sx500 Series Stackable Switches offers different port features. You
can add security to a port, make the port more energy efficient, map a
VLAN to a port, make a port available or not to a specific network
portion, and so forth. The next set of articl...
On a technical level, Cisco 300 Series is far superior to the HP 1910
and 2530 products. This document provides evidence that Cisco has >100
features not supported by the HP platforms. Check this out and decide
for yourselves. Notes (2/5/2014):- Informati...