Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
282
Views
0
Helpful
1
Replies

4 group in the same LAN each group go out through specific ip address

akhnoukhca
Level 1
Level 1

‎03-22-2015 10:46 PM - edited ‎03-05-2019 01:04 AM

Hi All,

 

I have 5 public ip address from the ISP come to 4 port D-link router and the isp does not allow any one to go through this router. 

we have 3 groups in the LAN let's say 1- phones 2- AP 3- PC all should hae same Lan ip range of course DHCP not static

my question is how we make each group go outside to the internet through specific one of the public ips we have ?

 

and which equipment we need if we need just L3 switch or we need router and switch  ?

 

thanks Guys,

 

 

Labels:
0 Helpful
1 Reply 1

paul driver
VIP
VIP

‎07-27-2015 01:20 PM

Hello

Suggest you separate your 3 vlans internally ( phone/aps-pcs) then perform NAT on these internal subnets  against your public addresssing supplied by your isp.

lasty create dhcp pools for all 3 internal subnets for your clients.

You can do this all on the router is you wish, with a switch attached to its interface for access assigment.


Basic Example:

ISP supplied addressing = 10.1.12.0/29 ( mask 255.255.255.248)

router facing ISP

ip dhcp pool vl10
   network 10.10.10.0 255.255.255.0
   default-router 10.10.10.254
   domain-name test.com
   dns-server 100.100.100.1
   lease 0 8

ip dhcp excluded-address 10.10.10.254
 

ip dhcp pool vl20
   network 20.20.20.0 255.255.255.0
   dns-server 100.100.100.1
   domain-name test.com
   default-router 20.20.20.254
   lease 0 8

ip dhcp excluded-address 20.20.20.254

 

 

ip dhcp pool vl30
   network 30.30.30.0 255.255.255.0
   default-router 30.30.30.254
   domain-name test.com
   dns-server 100.100.100.1
   lease 0 8


ip dhcp excluded-address 30.30.30.254


ip nat pool vl10 10.1.12.4 10.1.12.4 prefix-length 29
ip nat pool vl20 10.1.12.5 10.1.12.5 prefix-length 29
ip nat pool vl30 10.1.12.6 10.1.12.6 prefix-length 29
ip nat inside source list 10 pool vl10 overload
ip nat inside source list 20 pool vl20 overload
ip nat inside source list 30 pool vl30 overload

access-list 10 permit 10.10.10.0 0.0.0.255
access-list 20 permit 20.20.20.0 0.0.0.255
access-list 30 permit 30.30.30.0 0.0.0.255

interface FastEthernet0/0
description WAN LINK
 ip address 10.1.12.1 255.255.255.248
 ip nat outside

interface FastEthernet0/1
description LAN LINK to Switch

interface FastEthernet0/1.10
description Phone Vlan
 encapsulation dot1Q 10
 ip address 10.10.10.254 255.255.255.0
 ip nat inside

interface FastEthernet0/1.20
description AP Vlan
 encapsulation dot1Q 20
 ip address 20.20.20.254 255.255.255.0
 ip nat inside


interface FastEthernet0/1.30
description PC Vlan
 encapsulation dot1Q 30
 ip address 30.30.30.254 255.255.255.0
 ip nat inside

ip route 0.0.0.0 0.0.0.0 10.1.12.2 name Next-hop-to-isp

 

Switch
======

int x/x
description Uplink to router
switchpor trunk enacp dot1q
switchport mode trunk

int fa0/1
description Phone access port
switchport host
switchport access vlan 10

int fa0/2
description AP access port
switchport host
switchport access vlan 20

int fa0/3
description PC access port
switchport host
switchport access vlan 30

 

res

Paul


 

 





.


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful
Customers Also Viewed These Support Documents