Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Configuring a Cisco 2921 and two Cisco 3750 switches for a data and voice vlan.

We're trying to install a network with a Cisco 2921 router and two Cisco 3750 switches for use with a data and voice vlan that need access to the internet. The phones are polycom phones which download their firmware/configuration and register through an ftp server out on the internet.  The phones are unable to get out to the internet.  At one point we had issues getting both phones and PC's to grab their IP addresses but we may have cleared that issue.  I'm not sure at this point if the issue is with the router or internet.  Below are sections of the router and switch configs.  For the switch I show the config for the trunk port to the router and two ways I've tried to configure the access ports.

 

Router1:

!
ip dhcp excluded-address 10.88.17.1 10.88.17.2
ip dhcp excluded-address 192.168.1.1 192.168.1.19
!
ip dhcp pool data
 network 192.168.1.0 255.255.255.0
 default-router 192.168.1.1 
 dns-server 8.8.8.8 8.8.4.4 
!
ip dhcp pool voice
 network 10.88.17.0 255.255.255.0
 default-router 10.88.17.1 
 option 42 ip 222.222.222.222 
 option 150 ip 222.222.222.222 
 option 160 ip 222.222.222.222 
 option 66 ascii "ftp://poly:xxx@222.222.222.222"
 dns-server 8.8.8.8 222.222.222.222 
!
!
!
ip domain name acmecompany.com
ip name-server 8.8.8.8
ip name-server 8.8.4.4
no ipv6 cef
multilink bundle-name authenticated
!
!
!
!
license udi pid CISCO2921/K9 sn FTX12345678
!
!
username admin password admin
!
!
!
!
!
!
interface Embedded-Service-Engine0/0
 no ip address
 shutdown
!
interface GigabitEthernet0/2
 no ip address

 ip nat inside
 duplex auto
 speed auto
!
interface GigabitEthernet0/2.10
 description Voice VLAN
 encapsulation dot1Q 10
 ip address 10.88.17.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
!
interface GigabitEthernet0/2.20
 description Data VLAN
 encapsulation dot1Q 20 native
 ip address 192.168.1.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
!
interface Serial0/1/0
 description Primary MPLS T1 Voice Circuit
 no ip address
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 encapsulation frame-relay IETF
!
interface Serial0/1/0.30 point-to-point
 ip address 233.233.233.234 255.255.255.252
 ip nat outside
 ip virtual-reassembly in
 frame-relay interface-dlci 30   
!
interface Serial0/1/0.31 point-to-point
 ip address 10.85.7.2 255.255.255.252
 frame-relay interface-dlci 31   
!
router bgp 65200
 bgp log-neighbor-changes
 network 10.88.17.0 mask 255.255.255.0
 network 192.168.1.0
 redistribute connected
 neighbor 10.85.7.1 remote-as 2222
 neighbor 10.85.7.1 update-source Serial0/1/0.31
 neighbor 10.85.7.1 version 4
 neighbor 10.85.7.1 soft-reconfiguration inbound
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
ip nat inside source route-map DIA interface Serial0/1/0.30 overload
ip route 0.0.0.0 0.0.0.0 233.233.233.233
!
ip sla enable timestamp
logging history size 500
logging trap notifications
logging origin-id hostname
logging host 209.209.209.209
access-list 1 permit 10.88.17.0 0.0.0.255
access-list 1 permit 192.168.1.0 0.0.0.255
!
route-map DIA permit 10
 match ip address 1
 match interface Serial0/1/0.30
!
!

 

Switch1:

interface GigabitEthernet1/0/15
 switchport access vlan 20
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast

 

interface GigabitEthernet1/0/19
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 20
 switchport trunk allowed vlan 10,20
 switchport mode trunk
 spanning-tree portfast trunk

 

 

Trunk port:

interface GigabitEthernet1/0/24
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 20
 switchport mode trunk
 spanning-tree portfast trunk

 

 

Any ideas of what is wrong?  I have a feeling it could be my serial/frame relay configuration but not sure.  Any kind of advice would be great.  Thanks.

 

2 REPLIES
New Member

One thing I would look at -

One thing I would look at - you set all options to 222.222.222.222 yet you use primary dns 8.8.8.8. I would think 222.222.222.222 would at least speed up the dns search order.

ip dhcp pool voice
 network 10.88.17.0 255.255.255.0
 default-router 10.88.17.1 
 option 42 ip 222.222.222.222 
 option 150 ip 222.222.222.222 
 option 160 ip 222.222.222.222 
 option 66 ascii "ftp://poly:xxx@222.222.222.222"
 dns-server 222.222.222.222 8.8.8.8

New Member

Good point.  We actually

Good point.  We actually reversed it thinking the google server would help the situation.  I switch it back.

679
Views
0
Helpful
2
Replies