cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
897
Views
0
Helpful
11
Replies

connect 2 networks

josue Cabrera
Level 1
Level 1

Hi buddies!

I need your expert advice...

I have 2 networks and I need able see diferent equipment on each network.

One network is fully administered, the other no.

The internet connection is plugged on FA0 and the other network on FA01.

the router is 1811 with IOS  12.4(6)T3

pls see the diagram.

thx for any comment.

11 Replies 11

Jon Marshall
Hall of Fame
Hall of Fame

What is the issue ? Do you have connectivity problems ?

What is the actual question

Jon

paolo bevilacqua
Hall of Fame
Hall of Fame

Whar "see" means ? What doesn't work ?

Hi,

If the 1800 is the device with the public IP from the ISP, you should configure NAT for Internet access.

If you need outbound internet traffic that's pretty much (besides the basic connectivity configuration like the default gateway and properly configured interfaces).

You should create ACL to allow only the desired traffic to have a secure environment.

You can start with this.

Federico.

Giuseppe Larosa
Hall of Fame
Hall of Fame

Hello Joshu,

>> One network is fully administered, the other no.

We could call this an extranet. Security is the biggest issue you shouldn't accept any kind of traffic from them.

You should at least deploy extended ACLs and you should clearly define what IP subnets and what applications can be accessed by them.

Routing is not an issue unless there are overlapping addresses that would require the use of NAT, this may be among the first aspects to check.

Hope to help

Giuseppe

Thx everybody for answer!

Jon:

Yes I have conectivity problems, I´m in the network 10.174.46.0 when I send a ping to network 172.16.21.0  it fails.


The question will be, What is happening? why fails? I loss, I don´t know if is a ACL or NAT configuration.

Bevilacqua:

I need establish comunication between networks.

Federico:

Yes the 1800 have the public IP address (on the FE 0), and the internet access works without problems. But I can´t establish any connection to the other network (172.16.21.0).

Giuseppe:

No is an extranet, only is an other network, unfortunalety I have users in the other network (172.16.21.0)

To establish connections between both networks...  is the router the default gateway for both networks?

If so, you can communicate between both networks as long as there are no ACLs denying the traffic.

Federico.

Hi

Noup...

For tthe network 10.174.46.1 the defaul router is the 1800, for the other network have other default gw.

So, make sure that the other Default Gateway has a route pointing to the 1800 to reach the network on the other side of the 1800.

Federico.

Ooops

here is a big issue... the other network administrator can´t access his router.

other idea?

If the other network has a default gateway to another router (and that router does not have a route to the 1800), the traffic cannot return.

If there's this routing problem on the other side, it has to be fixed.

Can do a test changing the default gateway on a computer to the 1800 (instead of the current default gateway, only if the LAN and the 1800 share the same subnet) and see if it works.

Federico.

Can you engage someone experienced to work with you on all the aspects ?

Evidently you miss the needed networking basics to solve this alone.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco