Hi, I'm very new for CISCO switches.
Recently my company install 3650 gigabit switch and I connect it to our Internet line which has static address. And I add 2 VLANs, one for Servers, two for Office PCs.
Now, inter-VLAN routing is no problem but all connected PCs on VLANs has no access internet.
I also made additional VLAN which is assigned only one dedicated port which connected to our internet.
Briefly show the VLANS:
VLAN 1 : default
VLAN 100 : Servers - G1/0/1-12
ip address 100.100.100.1 255.255.255.0
ip nat inside
VLAN 200 : Offices - G1/0/13-22
ip address 100.100.200.1 255.255.255.0
ip nat inside
VLAN 300 : WAN - G1/0/24
ip address 121.133.31.150 255.255.255.192
ip nat outside
And I set ACL for:
access-list 1 permit 100.100.100.0 0.0.0.255
access-list 2 permit 100.100.200.0 0.0.0.255
ip nat inside source list 1 interface vlan 300 overload
ip nat inside source list 2 interface vlan 300 overload
ip route 0.0.0.0 0.0.0.0 121.133.31.194
Also there is DHCP server running:
ip dhcp excluded-address 100.100.100.1
ip dhcp excluded-address 100.100.200.1
ip dhcp pool VLAN_Server
network 100.100.100.0 255.255.255.0
default-router 100.100.100.1
dns-server 8.8.8.8
lease infinite
ip dhcp pool VLAN_Office
network 100.100.200.0 255.255.255.0
default-router 100.100.200.1
dns-server 8.8.8.8
lease infinite
Inter-VLAN communicate is all right.
only each VLANs can't go through internet which connected VLAN 300.
I need all experts advice...
Thanks for advance!
