cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1836
Views
15
Helpful
7
Replies

SG-350 Intervlan routing

Hi all

 

Having this issue for a while now, but desperate to get it working. Its a super simple setup

 

1 x SG-350-10P switch

VLAN 1 (default) - 192.168.1.254/24

VLAN 2 (Nodes) - 192.168.2.254/24

VLAN 3 (clients) - 192.168.3.254/24

 

I have setup port GE2 as access on VLAN2

I have setup port GE3 as access on VLAN3

 

SBC ARM pc on VLAN2 - static IP of 192.168.2.11/24 - gateway 192.168.2.254

Windows PC on VLAN3 - static IP of 192.168.3.11/24  - gateway 192.168.3.254

 

IPV4 routing is enabled but I cannot ping from the windows PC to the ARM device.....I've read that the SG-350 comes as L3 out of the box, however I just cannot get this setup to work. Routes aren't being auto generated like I've seen elsewhere so I assume the routing function is just dropping packets at the gateway

 

 

7 Replies 7

Adding in that I also cannot ping the other way**

Seb Rupik
VIP Alumni
VIP Alumni

Hi there,

Can you share the running config of the switch, along with the output of:

sh ip route

sh ip arp

sh mac address

 

Also can the two PCs ping their respective gateway addresses? With regard to the windows PC, have you either disabled with windows firewall are configure a permit rule to respond to ICMP?

 

cheers,

Seb.

It might be helpful to see the arp table from each of the PCs. Can the SG350 ping to the PCs?

HTH

Rick

Arp tables from each PC:

 

PC1

Interface: 192.168.1.11 --- 0xe
Internet Address Physical Address Type
192.168.1.254 70-0b-4f-65-b5-94 dynamic
192.168.1.255 ff-ff-ff-ff-ff-ff static
224.0.0.22 01-00-5e-00-00-16 static
224.0.0.251 01-00-5e-00-00-fb static
224.0.0.252 01-00-5e-00-00-fc static
239.255.255.250 01-00-5e-7f-ff-fa static
255.255.255.255 ff-ff-ff-ff-ff-ff static

 

 

PC 2 

Interface: 192.168.2.10 --- 0xe
Internet Address Physical Address Type
192.168.2.254 70-0b-4f-65-b5-94 dynamic
192.168.2.255 ff-ff-ff-ff-ff-ff static
224.0.0.22 01-00-5e-00-00-16 static
224.0.0.251 01-00-5e-00-00-fb static
224.0.0.252 01-00-5e-00-00-fc static
239.255.255.250 01-00-5e-7f-ff-fa static
239.255.255.251 01-00-5e-7f-ff-fb static
255.255.255.255 ff-ff-ff-ff-ff-ff static

Each PC can ping the switch at their respective vlan addresses and vice versa

just can't ping across vlans

Thanks for posting the outputs and for the switch config. The switch config does match up with your description of having 3 vlans with hosts connected in 2 of the vlans. And the PC arp tables reflect that. I understand that the PC at 192.168.1.11 can ping its gateway at 192.168.1.254. Can that PC ping the 192.168.2.254 switch address?

 

There are a couple of things that I wonder about:

- the config shows a DHCP pool configured for vlan 1. But the vlan 1 interface config seems to disable DHCP. Is this intended?

- some of the outputs from the switch do not match the config

switch65b594#sh ip route

is clear that IP forwarding is enabled. But it shows only vlan 1 and vlan 2 and the addresses shown do not match what is in the config.

switch65b594#show arp

also shows only vlan 1 and vlan 2

- I am a bit surprised that it seems that the switch uses the same mac address for interfaces vlan 1 and vlan 2 of 70-0b-4f-65-b5-94. I don't know that it is a problem, but it is a surprise. 

HTH

Rick

Hi 

and

I have the vlan switch address set as the gateway for each respective vlan (192.168.1.254, 192.168.2.254, 192.168.3.254) and the PC's can ping and receive pings from these addresses in each respective VLAN

 

I'm now using a windows PC as both devices for simplicities sake. Both firewalls completely off so no ICMP requests are being blocked

 

switch65b594#sh ip route
Maximum Parallel Paths: 1 (1 after reset)

 

 

 

Total number of entries: 2


VLAN Interface IP address HW address status
--------------------- --------------- ------------------- ---------------
vlan 1 gi10 192.168.1.11 7c:8b:ca:11:f5:2c dynamic
vlan 2 gi2 192.168.2.10 00:e0:4c:68:01:59 dynamic

 


IP Forwarding: enabled
Codes: > - best, C - connected, S - static


C 192.168.1.0/24 is directly connected, vlan 1
C 192.168.2.0/24 is directly connected, vlan 2

 

 

 

 

switch65b594#show arp

Total number of entries: 2


VLAN Interface IP address HW address status
--------------------- --------------- ------------------- ---------------
vlan 1 gi10 192.168.1.11 7c:8b:ca:11:f5:2c dynamic
vlan 2 gi2 192.168.2.10 00:e0:4c:68:01:59 dynamic

 

 

switch65b594#show mac address
Flags: I - Internal usage VLAN
Aging time is 300 sec

Vlan Mac Address Port Type
------------ --------------------- ---------- ----------
1 70:0b:4f:65:b5:94 0 self
1 7c:8b:ca:11:f5:2c gi10 dynamic
2 00:e0:4c:68:01:59 gi2 dynamic

switch65b594#

 

 

 

switch65b594#sh running-config
config-file-header
switch65b594
v2.3.5.63 / RLINUX_923_093
CLI v1.0
file SSD indicator encrypted
@
ssd-control-start
ssd config
ssd file passphrase control unrestricted
no ssd file integrity control
ssd-control-end cb0a3fdb1f3a1af4e4430033719968c0
!
!
unit-type-control-start
unit-type unit 1 network gi uplink none
unit-type-control-end
!
vlan database
vlan 2-3
exit
voice vlan oui-table add 0001e3 Siemens_AG_phone________
voice vlan oui-table add 00036b Cisco_phone_____________
voice vlan oui-table add 00096e Avaya___________________
voice vlan oui-table add 000fe2 H3C_Aolynk______________
voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
voice vlan oui-table add 00d01e Pingtel_phone___________
voice vlan oui-table add 00e075 Polycom/Veritel_phone___
voice vlan oui-table add 00e0bb 3Com_phone______________
ip dhcp server
ip dhcp pool network vlan1dhcp
address low 192.168.1.10 high 192.168.1.30 255.255.255.0
default-router 192.168.1.254
exit
ip dhcp pool network vlan2dhcp
address low 192.168.2.10 high 192.168.2.30 255.255.255.0
default-router 192.168.2.254
exit
ip dhcp pool network vlan3dhcp
address low 192.168.3.10 high 192.168.3.30 255.255.255.0
default-router 192.168.3.254
exit
bonjour interface range vlan 1
hostname switch65b594
username cisco password encrypted 041210e66a84cf9701ae3c11bc267e5936fbb127 privilege 15
ip ssh server
!
interface vlan 1
ip address 192.168.1.254 255.255.255.0
no ip address dhcp
!
interface vlan 2
name anchors
ip address 192.168.2.254 255.255.255.0
!
interface vlan 3
name clients
ip address 192.168.3.254 255.255.255.0
!
interface GigabitEthernet2
switchport access vlan 2
!
interface GigabitEthernet3
switchport access vlan 3
!
exit

 

 

 

Review Cisco Networking for a $25 gift card