Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2344
Views
0
Helpful
5
Replies

Cisco C1111-4P LAN ports routing

Go to solution
AWRS22
Level 1
Level 1

‎07-16-2022 07:01 PM - last edited on ‎07-19-2022 02:27 AM by Community Manager

Hi Everyone.

Can someone guide me how I can make my router L2 port work? Currently manage to make the port give out an ip address using VLAN2 instead of VLAN1 but still, there is no traffic to the gateway. Following is the config:

version 16.12
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
platform qfp utilization monitor load 80
platform punt-keepalive disable-kernel-core
!
hostname 2151RU
!
boot-start-marker
boot-end-marker
!
!
enable secret 9 $9$sgoj9lEdD4hZ8k$C/4S2jNvRm0Tkw4ZGnsHV3vtpxPlbcuYfQDCC/hDe0U
enable password 7 03520D58555E751D1B
!
aaa new-model
!
!
aaa authentication login default local
aaa authorization exec default local
!
!
aaa login success-track-conf-time 1
!
!
!
!
aaa session-id common
clock timezone UTC 7 0
call-home
! If contact email address in call-home is configured as sch-smart-licensing@cisco.com
! the email address configured in Cisco Smart License Portal will be used as contact email address to send SCH notifications.
contact-email-addr sch-smart-licensing@cisco.com
profile "CiscoTAC-1"
active
destination transport-method http
no destination transport-method email
!
ip name-server 8.8.8.8 8.8.4.4
no ip domain lookup
ip dhcp excluded-address 192.168.1.0 192.168.1.50
ip dhcp excluded-address 192.168.1.251 192.168.1.255
ip dhcp excluded-address 192.168.2.0 192.168.2.50
ip dhcp excluded-address 192.168.2.251 192.168.2.255
!
ip dhcp pool LAN
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
dns-server 8.8.8.8 8.8.4.4 
lease infinite
!
ip dhcp pool Vlan2
network 192.168.2.0 255.255.255.0
default-router 192.168.1.1
dns-server 8.8.8.8 8.8.4.4
lease infinite
!
!
!
login on-success log
!
!
!
!
!
!
!
subscriber templating
multilink bundle-name authenticated
!
!
!
crypto pki trustpoint TP-self-signed-3838327340
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3838327340
revocation-check none
rsakeypair TP-self-signed-3838327340
!
crypto pki trustpoint SLA-TrustPoint
enrollment pkcs12
revocation-check crl
!
!
crypto pki certificate chain TP-self-signed-3838327340
certificate self-signed 01
30820330 30820218 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 33383338 33323733 3430301E 170D3231 31323134 30333031
31365A17 0D333030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 38333833
32373334 30308201 22300D06 092A8648 86F70D01 01010500 0382010F 00308201
0A028201 0100939C D8285F55 82E7D0EC BBEC4815 E772AD6D B5DFF542 AB72DD70
FD7B7A4C E341E7C2 94CEFEAB 47AC6957 AACEEDE7 83C5389A 6C231882 BA3E74F4
65AF6C8C B2D60E31 441BD95E E352B58E 4439988A 259FCF48 5A737955 F62DED33
138D0738 B5DF530D 4E545A4E 2AF67B44 6FA0E702 51042C43 55806A74 13EC60CE
8C6B6CB6 5889EA53 C4A1C5BD BC8940C7 6B33D591 73E8C574 AAEA6CE5 29C440E6
A8269F09 706338AB 0EF3480B AD9D4116 FA7A7537 63CE30CB 17BA9DDF AEAF63CF
EECF01B0 B0A90466 9EF0EB06 B30C3FAC 5FEB8134 7801FEB6 535EE926 6B3EE46B
1C82A1C5 9204F140 B249E3E1 B25B411A CE6CB2BB 3CBC9ED6 BF9017D1 CF3C4BA5
D414CD60 04750203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF
301F0603 551D2304 18301680 14E5623D 55867506 A0CBB38F 46812FE9 0931B156
94301D06 03551D0E 04160414 E5623D55 867506A0 CBB38F46 812FE909 31B15694
300D0609 2A864886 F70D0101 05050003 82010100 88ADD1FC E738CD57 23DB6E5A
14680975 647C3973 84261C48 0C9FC459 9527DD8C 1510CD43 89C496B5 7F8C4681
E6C73BC2 0A58F93F 8871929D A20A31DF ED643166 744EC06E 5BD224AA D84C3B24
01D16B6A CBA9D565 4083DEC2 6EAD3F02 2137DCF0 343B216E 7A7A830D 077CF805
B54D3477 E2CE79A3 7F390D2E ACD562EC 862914AF 63C18E3C 8F896E21 1CCEAAEF
1AA38AE3 43ED6929 12BBD12B 29C06312 DC7FB310 BCA74891 61FF5B89 804E67D8
BC9431F6 A66D496D ADA0F6AC 18F02C04 146D98DF AC8F1A0F B5343838 C50FFA04
CC6F7500 0C022568 B35D28BD E4148E54 AEDA6283 E531D76E 01E7CFAB C97D64A0
40FD4E7E 2E1BD8BF 6F1AA70A A7E4ACE1 57055673
quit
crypto pki certificate chain SLA-TrustPoint
certificate ca 01
30820321 30820209 A0030201 02020101 300D0609 2A864886 F70D0101 0B050030
32310E30 0C060355 040A1305 43697363 6F312030 1E060355 04031317 43697363
6F204C69 63656E73 696E6720 526F6F74 20434130 1E170D31 33303533 30313934
3834375A 170D3338 30353330 31393438 34375A30 32310E30 0C060355 040A1305
43697363 6F312030 1E060355 04031317 43697363 6F204C69 63656E73 696E6720
526F6F74 20434130 82012230 0D06092A 864886F7 0D010101 05000382 010F0030
82010A02 82010100 A6BCBD96 131E05F7 145EA72C 2CD686E6 17222EA1 F1EFF64D
CBB4C798 212AA147 C655D8D7 9471380D 8711441E 1AAF071A 9CAE6388 8A38E520
1C394D78 462EF239 C659F715 B98C0A59 5BBB5CBD 0CFEBEA3 700A8BF7 D8F256EE
4AA4E80D DB6FD1C9 60B1FD18 FFC69C96 6FA68957 A2617DE7 104FDC5F EA2956AC
7390A3EB 2B5436AD C847A2C5 DAB553EB 69A9A535 58E9F3E3 C0BD23CF 58BD7188
68E69491 20F320E7 948E71D7 AE3BCC84 F10684C7 4BC8E00F 539BA42B 42C68BB7
C7479096 B4CB2D62 EA2F505D C7B062A4 6811D95B E8250FC4 5D5D5FB8 8F27D191
C55F0D76 61F9A4CD 3D992327 A8BB03BD 4E6D7069 7CBADF8B DF5F4368 95135E44
DFC7C6CF 04DD7FD1 02030100 01A34230 40300E06 03551D0F 0101FF04 04030201
06300F06 03551D13 0101FF04 05300301 01FF301D 0603551D 0E041604 1449DC85
4B3D31E5 1B3E6A17 606AF333 3D3B4C73 E8300D06 092A8648 86F70D01 010B0500
03820101 00507F24 D3932A66 86025D9F E838AE5C 6D4DF6B0 49631C78 240DA905
604EDCDE FF4FED2B 77FC460E CD636FDB DD44681E 3A5673AB 9093D3B1 6C9E3D8B
D98987BF E40CBD9E 1AECA0C2 2189BB5C 8FA85686 CD98B646 5575B146 8DFC66A8
467A3DF4 4D565700 6ADF0F0D CF835015 3C04FF7C 21E878AC 11BA9CD2 55A9232C
7CA7B7E6 C1AF74F6 152E99B7 B1FCF9BB E973DE7F 5BDDEB86 C71E3B49 1765308B
5FB0DA06 B92AFE7F 494E8A9E 07B85737 F3A58BE1 1A48A229 C37C1E69 39F08678
80DDCD16 D6BACECA EEBC7CF9 8428787B 35202CDC 60E4616A B623CDBD 230E3AFB
418616A9 4093E049 4D10AB75 27E86F73 932E35B5 8862FDAE 0275156F 719BB2F0
D697DF7F 28
quit
!
!
license udi pid C1111-4P sn FGL2450L8HC
memory free low-watermark processor 70177
!
diagnostic bootup level minimal
!
spanning-tree extend system-id
!
username admin privilege 15 secret 9 $9$4/2M3FIM2FQK2U$HU7YajsfPVYyyfLZPVtKFS2Y9tlFfbxMz7VHrR1FPYE
!
redundancy
mode none
!
!
vlan internal allocation policy ascending
!
!
!
!
!
!
interface GigabitEthernet0/0/0
ip address dhcp
ip nat outside
negotiation auto
spanning-tree portfast
!
interface GigabitEthernet0/0/1
ip address 192.168.1.1 255.255.255.0
ip nat inside
negotiation auto
spanning-tree portfast trunk
!
interface GigabitEthernet0/1/0
switchport trunk native vlan 2
switchport mode access
shutdown
spanning-tree portfast
!
interface GigabitEthernet0/1/1
switchport access vlan 2
switchport trunk native vlan 2
spanning-tree portfast
!
interface GigabitEthernet0/1/2
switchport access vlan 2
switchport trunk native vlan 2
spanning-tree portfast
!
interface GigabitEthernet0/1/3
switchport access vlan 2
switchport trunk native vlan 2
spanning-tree portfast
!
interface Vlan1
no ip address
!
interface Vlan2
ip address 192.168.2.1 255.255.255.0
!
ip default-gateway 192.168.1.1
ip forward-protocol nd
ip http server
ip http authentication aaa
ip http secure-server
ip nat inside source list 1 interface GigabitEthernet0/0/0 overload
ip route 192.168.1.0 255.255.255.0 GigabitEthernet0/0/0
ip route 192.168.2.0 255.255.255.0 GigabitEthernet0/0/0
!
!
!
ip access-list standard 1
10 permit 192.168.1.0 0.0.0.255
20 permit 192.168.2.0 0.0.0.255
!
!
!
!
!
!
control-plane
!
!
line con 0
transport input none
stopbits 1
line vty 0 4
length 0
!
!
!
!
!
!
end
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Georg Pauwen
VIP
VIP

‎07-17-2022 12:44 AM - last edited on ‎07-19-2022 02:30 AM by Community Manager

Hello,

make sure the configuration looks like below (important parts marked in bold):

version 16.12
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
platform qfp utilization monitor load 80
platform punt-keepalive disable-kernel-core
!
hostname 2151RU
!
boot-start-marker
boot-end-marker
!
enable secret 9 $9$sgoj9lEdD4hZ8k$C/4S2jNvRm0Tkw4ZGnsHV3vtpxPlbcuYfQDCC/hDe0U
enable password 7 03520D58555E751D1B
!
aaa new-model
!
aaa authentication login default local
aaa authorization exec default local
!
aaa login success-track-conf-time 1
!
aaa session-id common
clock timezone UTC 7 0
call-home
! If contact email address in call-home is configured as sch-smart-licensing@cisco.com
! the email address configured in Cisco Smart License Portal will be used as contact email address to send SCH notifications.
contact-email-addr sch-smart-licensing@cisco.com
profile "CiscoTAC-1"
active
destination transport-method http
no destination transport-method email
!
ip name-server 8.8.8.8 8.8.4.4
no ip domain lookup
ip dhcp excluded-address 192.168.1.0 192.168.1.50
ip dhcp excluded-address 192.168.1.251 192.168.1.255
ip dhcp excluded-address 192.168.2.0 192.168.2.50
ip dhcp excluded-address 192.168.2.251 192.168.2.255
!
ip dhcp pool LAN
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
dns-server 8.8.8.8 8.8.4.4 
lease infinite
!
ip dhcp pool Vlan2
network 192.168.2.0 255.255.255.0
default-router 192.168.2.1
dns-server 8.8.8.8 8.8.4.4
lease infinite
!
login on-success log
!
subscriber templating
multilink bundle-name authenticated
!
crypto pki trustpoint TP-self-signed-3838327340
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3838327340
revocation-check none
rsakeypair TP-self-signed-3838327340
!
crypto pki trustpoint SLA-TrustPoint
enrollment pkcs12
revocation-check crl
!
crypto pki certificate chain TP-self-signed-3838327340
certificate self-signed 01
30820330 30820218 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 33383338 33323733 3430301E 170D3231 31323134 30333031
31365A17 0D333030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 38333833
32373334 30308201 22300D06 092A8648 86F70D01 01010500 0382010F 00308201
0A028201 0100939C D8285F55 82E7D0EC BBEC4815 E772AD6D B5DFF542 AB72DD70
FD7B7A4C E341E7C2 94CEFEAB 47AC6957 AACEEDE7 83C5389A 6C231882 BA3E74F4
65AF6C8C B2D60E31 441BD95E E352B58E 4439988A 259FCF48 5A737955 F62DED33
138D0738 B5DF530D 4E545A4E 2AF67B44 6FA0E702 51042C43 55806A74 13EC60CE
8C6B6CB6 5889EA53 C4A1C5BD BC8940C7 6B33D591 73E8C574 AAEA6CE5 29C440E6
A8269F09 706338AB 0EF3480B AD9D4116 FA7A7537 63CE30CB 17BA9DDF AEAF63CF
EECF01B0 B0A90466 9EF0EB06 B30C3FAC 5FEB8134 7801FEB6 535EE926 6B3EE46B
1C82A1C5 9204F140 B249E3E1 B25B411A CE6CB2BB 3CBC9ED6 BF9017D1 CF3C4BA5
D414CD60 04750203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF
301F0603 551D2304 18301680 14E5623D 55867506 A0CBB38F 46812FE9 0931B156
94301D06 03551D0E 04160414 E5623D55 867506A0 CBB38F46 812FE909 31B15694
300D0609 2A864886 F70D0101 05050003 82010100 88ADD1FC E738CD57 23DB6E5A
14680975 647C3973 84261C48 0C9FC459 9527DD8C 1510CD43 89C496B5 7F8C4681
E6C73BC2 0A58F93F 8871929D A20A31DF ED643166 744EC06E 5BD224AA D84C3B24
01D16B6A CBA9D565 4083DEC2 6EAD3F02 2137DCF0 343B216E 7A7A830D 077CF805
B54D3477 E2CE79A3 7F390D2E ACD562EC 862914AF 63C18E3C 8F896E21 1CCEAAEF
1AA38AE3 43ED6929 12BBD12B 29C06312 DC7FB310 BCA74891 61FF5B89 804E67D8
BC9431F6 A66D496D ADA0F6AC 18F02C04 146D98DF AC8F1A0F B5343838 C50FFA04
CC6F7500 0C022568 B35D28BD E4148E54 AEDA6283 E531D76E 01E7CFAB C97D64A0
40FD4E7E 2E1BD8BF 6F1AA70A A7E4ACE1 57055673
quit
crypto pki certificate chain SLA-TrustPoint
certificate ca 01
30820321 30820209 A0030201 02020101 300D0609 2A864886 F70D0101 0B050030
32310E30 0C060355 040A1305 43697363 6F312030 1E060355 04031317 43697363
6F204C69 63656E73 696E6720 526F6F74 20434130 1E170D31 33303533 30313934
3834375A 170D3338 30353330 31393438 34375A30 32310E30 0C060355 040A1305
43697363 6F312030 1E060355 04031317 43697363 6F204C69 63656E73 696E6720
526F6F74 20434130 82012230 0D06092A 864886F7 0D010101 05000382 010F0030
82010A02 82010100 A6BCBD96 131E05F7 145EA72C 2CD686E6 17222EA1 F1EFF64D
CBB4C798 212AA147 C655D8D7 9471380D 8711441E 1AAF071A 9CAE6388 8A38E520
1C394D78 462EF239 C659F715 B98C0A59 5BBB5CBD 0CFEBEA3 700A8BF7 D8F256EE
4AA4E80D DB6FD1C9 60B1FD18 FFC69C96 6FA68957 A2617DE7 104FDC5F EA2956AC
7390A3EB 2B5436AD C847A2C5 DAB553EB 69A9A535 58E9F3E3 C0BD23CF 58BD7188
68E69491 20F320E7 948E71D7 AE3BCC84 F10684C7 4BC8E00F 539BA42B 42C68BB7
C7479096 B4CB2D62 EA2F505D C7B062A4 6811D95B E8250FC4 5D5D5FB8 8F27D191
C55F0D76 61F9A4CD 3D992327 A8BB03BD 4E6D7069 7CBADF8B DF5F4368 95135E44
DFC7C6CF 04DD7FD1 02030100 01A34230 40300E06 03551D0F 0101FF04 04030201
06300F06 03551D13 0101FF04 05300301 01FF301D 0603551D 0E041604 1449DC85
4B3D31E5 1B3E6A17 606AF333 3D3B4C73 E8300D06 092A8648 86F70D01 010B0500
03820101 00507F24 D3932A66 86025D9F E838AE5C 6D4DF6B0 49631C78 240DA905
604EDCDE FF4FED2B 77FC460E CD636FDB DD44681E 3A5673AB 9093D3B1 6C9E3D8B
D98987BF E40CBD9E 1AECA0C2 2189BB5C 8FA85686 CD98B646 5575B146 8DFC66A8
467A3DF4 4D565700 6ADF0F0D CF835015 3C04FF7C 21E878AC 11BA9CD2 55A9232C
7CA7B7E6 C1AF74F6 152E99B7 B1FCF9BB E973DE7F 5BDDEB86 C71E3B49 1765308B
5FB0DA06 B92AFE7F 494E8A9E 07B85737 F3A58BE1 1A48A229 C37C1E69 39F08678
80DDCD16 D6BACECA EEBC7CF9 8428787B 35202CDC 60E4616A B623CDBD 230E3AFB
418616A9 4093E049 4D10AB75 27E86F73 932E35B5 8862FDAE 0275156F 719BB2F0
D697DF7F 28
quit
!
license udi pid C1111-4P sn FGL2450L8HC
memory free low-watermark processor 70177
!
diagnostic bootup level minimal
!
spanning-tree extend system-id
!
username admin privilege 15 secret 9 $9$4/2M3FIM2FQK2U$HU7YajsfPVYyyfLZPVtKFS2Y9tlFfbxMz7VHrR1FPYE
!
redundancy
mode none
!
vlan internal allocation policy ascending
!
interface GigabitEthernet0/0/0
ip address dhcp
ip nat outside
negotiation auto
spanning-tree portfast
!
interface GigabitEthernet0/0/1
ip address 192.168.1.1 255.255.255.0
ip nat inside
negotiation auto
spanning-tree portfast trunk
!
interface GigabitEthernet0/1/0
switchport mode access
shutdown
spanning-tree portfast
!
interface GigabitEthernet0/1/1
switchport access vlan 2
spanning-tree portfast
!
interface GigabitEthernet0/1/2
switchport access vlan 2
spanning-tree portfast
!
interface GigabitEthernet0/1/3
switchport access vlan 2
spanning-tree portfast
!
interface Vlan1
no ip address
!
interface Vlan2
ip address 192.168.2.1 255.255.255.0
ip nat inside
!
ip forward-protocol nd
ip http server
ip http authentication aaa
ip http secure-server
ip nat inside source list 1 interface GigabitEthernet0/0/0 overload
!
ip access-list standard 1
10 permit 192.168.1.0 0.0.0.255
20 permit 192.168.2.0 0.0.0.255
!
control-plane
!
line con 0
transport input none
stopbits 1
line vty 0 4
length 0
!
end

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Mohamed.s1992
Level 1
Level 1

‎07-16-2022 10:50 PM - last edited on ‎07-19-2022 02:29 AM by Community Manager

Hi 
as I saw in your configuration there are some points wrong in your config:-
1- you use the default gateway same interface IP !
2-you type spanning-tree port fast!

3- you have the same IP  on VLAN!

My advice is:- 

if you use the router you can remove int VLAN and use the subinterface
for Ex.
int gi0/0.2

encapsulation dot1 q 2 
IP add 192.168.1.1 255.255.255.0

no shut
remove the default gateway 
and put ip rotue  0.0.0.0 0.0.0.0 x.x.x.x ( x.x.x.x mean internet ip [wan IP]).


I hope this config will help you 
Thanks 

 

 

0 Helpful

Go to solution
Georg Pauwen
VIP
VIP

‎07-17-2022 12:44 AM - last edited on ‎07-19-2022 02:30 AM by Community Manager

Hello,

make sure the configuration looks like below (important parts marked in bold):

version 16.12
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
platform qfp utilization monitor load 80
platform punt-keepalive disable-kernel-core
!
hostname 2151RU
!
boot-start-marker
boot-end-marker
!
enable secret 9 $9$sgoj9lEdD4hZ8k$C/4S2jNvRm0Tkw4ZGnsHV3vtpxPlbcuYfQDCC/hDe0U
enable password 7 03520D58555E751D1B
!
aaa new-model
!
aaa authentication login default local
aaa authorization exec default local
!
aaa login success-track-conf-time 1
!
aaa session-id common
clock timezone UTC 7 0
call-home
! If contact email address in call-home is configured as sch-smart-licensing@cisco.com
! the email address configured in Cisco Smart License Portal will be used as contact email address to send SCH notifications.
contact-email-addr sch-smart-licensing@cisco.com
profile "CiscoTAC-1"
active
destination transport-method http
no destination transport-method email
!
ip name-server 8.8.8.8 8.8.4.4
no ip domain lookup
ip dhcp excluded-address 192.168.1.0 192.168.1.50
ip dhcp excluded-address 192.168.1.251 192.168.1.255
ip dhcp excluded-address 192.168.2.0 192.168.2.50
ip dhcp excluded-address 192.168.2.251 192.168.2.255
!
ip dhcp pool LAN
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
dns-server 8.8.8.8 8.8.4.4 
lease infinite
!
ip dhcp pool Vlan2
network 192.168.2.0 255.255.255.0
default-router 192.168.2.1
dns-server 8.8.8.8 8.8.4.4
lease infinite
!
login on-success log
!
subscriber templating
multilink bundle-name authenticated
!
crypto pki trustpoint TP-self-signed-3838327340
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3838327340
revocation-check none
rsakeypair TP-self-signed-3838327340
!
crypto pki trustpoint SLA-TrustPoint
enrollment pkcs12
revocation-check crl
!
crypto pki certificate chain TP-self-signed-3838327340
certificate self-signed 01
30820330 30820218 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 33383338 33323733 3430301E 170D3231 31323134 30333031
31365A17 0D333030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 38333833
32373334 30308201 22300D06 092A8648 86F70D01 01010500 0382010F 00308201
0A028201 0100939C D8285F55 82E7D0EC BBEC4815 E772AD6D B5DFF542 AB72DD70
FD7B7A4C E341E7C2 94CEFEAB 47AC6957 AACEEDE7 83C5389A 6C231882 BA3E74F4
65AF6C8C B2D60E31 441BD95E E352B58E 4439988A 259FCF48 5A737955 F62DED33
138D0738 B5DF530D 4E545A4E 2AF67B44 6FA0E702 51042C43 55806A74 13EC60CE
8C6B6CB6 5889EA53 C4A1C5BD BC8940C7 6B33D591 73E8C574 AAEA6CE5 29C440E6
A8269F09 706338AB 0EF3480B AD9D4116 FA7A7537 63CE30CB 17BA9DDF AEAF63CF
EECF01B0 B0A90466 9EF0EB06 B30C3FAC 5FEB8134 7801FEB6 535EE926 6B3EE46B
1C82A1C5 9204F140 B249E3E1 B25B411A CE6CB2BB 3CBC9ED6 BF9017D1 CF3C4BA5
D414CD60 04750203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF
301F0603 551D2304 18301680 14E5623D 55867506 A0CBB38F 46812FE9 0931B156
94301D06 03551D0E 04160414 E5623D55 867506A0 CBB38F46 812FE909 31B15694
300D0609 2A864886 F70D0101 05050003 82010100 88ADD1FC E738CD57 23DB6E5A
14680975 647C3973 84261C48 0C9FC459 9527DD8C 1510CD43 89C496B5 7F8C4681
E6C73BC2 0A58F93F 8871929D A20A31DF ED643166 744EC06E 5BD224AA D84C3B24
01D16B6A CBA9D565 4083DEC2 6EAD3F02 2137DCF0 343B216E 7A7A830D 077CF805
B54D3477 E2CE79A3 7F390D2E ACD562EC 862914AF 63C18E3C 8F896E21 1CCEAAEF
1AA38AE3 43ED6929 12BBD12B 29C06312 DC7FB310 BCA74891 61FF5B89 804E67D8
BC9431F6 A66D496D ADA0F6AC 18F02C04 146D98DF AC8F1A0F B5343838 C50FFA04
CC6F7500 0C022568 B35D28BD E4148E54 AEDA6283 E531D76E 01E7CFAB C97D64A0
40FD4E7E 2E1BD8BF 6F1AA70A A7E4ACE1 57055673
quit
crypto pki certificate chain SLA-TrustPoint
certificate ca 01
30820321 30820209 A0030201 02020101 300D0609 2A864886 F70D0101 0B050030
32310E30 0C060355 040A1305 43697363 6F312030 1E060355 04031317 43697363
6F204C69 63656E73 696E6720 526F6F74 20434130 1E170D31 33303533 30313934
3834375A 170D3338 30353330 31393438 34375A30 32310E30 0C060355 040A1305
43697363 6F312030 1E060355 04031317 43697363 6F204C69 63656E73 696E6720
526F6F74 20434130 82012230 0D06092A 864886F7 0D010101 05000382 010F0030
82010A02 82010100 A6BCBD96 131E05F7 145EA72C 2CD686E6 17222EA1 F1EFF64D
CBB4C798 212AA147 C655D8D7 9471380D 8711441E 1AAF071A 9CAE6388 8A38E520
1C394D78 462EF239 C659F715 B98C0A59 5BBB5CBD 0CFEBEA3 700A8BF7 D8F256EE
4AA4E80D DB6FD1C9 60B1FD18 FFC69C96 6FA68957 A2617DE7 104FDC5F EA2956AC
7390A3EB 2B5436AD C847A2C5 DAB553EB 69A9A535 58E9F3E3 C0BD23CF 58BD7188
68E69491 20F320E7 948E71D7 AE3BCC84 F10684C7 4BC8E00F 539BA42B 42C68BB7
C7479096 B4CB2D62 EA2F505D C7B062A4 6811D95B E8250FC4 5D5D5FB8 8F27D191
C55F0D76 61F9A4CD 3D992327 A8BB03BD 4E6D7069 7CBADF8B DF5F4368 95135E44
DFC7C6CF 04DD7FD1 02030100 01A34230 40300E06 03551D0F 0101FF04 04030201
06300F06 03551D13 0101FF04 05300301 01FF301D 0603551D 0E041604 1449DC85
4B3D31E5 1B3E6A17 606AF333 3D3B4C73 E8300D06 092A8648 86F70D01 010B0500
03820101 00507F24 D3932A66 86025D9F E838AE5C 6D4DF6B0 49631C78 240DA905
604EDCDE FF4FED2B 77FC460E CD636FDB DD44681E 3A5673AB 9093D3B1 6C9E3D8B
D98987BF E40CBD9E 1AECA0C2 2189BB5C 8FA85686 CD98B646 5575B146 8DFC66A8
467A3DF4 4D565700 6ADF0F0D CF835015 3C04FF7C 21E878AC 11BA9CD2 55A9232C
7CA7B7E6 C1AF74F6 152E99B7 B1FCF9BB E973DE7F 5BDDEB86 C71E3B49 1765308B
5FB0DA06 B92AFE7F 494E8A9E 07B85737 F3A58BE1 1A48A229 C37C1E69 39F08678
80DDCD16 D6BACECA EEBC7CF9 8428787B 35202CDC 60E4616A B623CDBD 230E3AFB
418616A9 4093E049 4D10AB75 27E86F73 932E35B5 8862FDAE 0275156F 719BB2F0
D697DF7F 28
quit
!
license udi pid C1111-4P sn FGL2450L8HC
memory free low-watermark processor 70177
!
diagnostic bootup level minimal
!
spanning-tree extend system-id
!
username admin privilege 15 secret 9 $9$4/2M3FIM2FQK2U$HU7YajsfPVYyyfLZPVtKFS2Y9tlFfbxMz7VHrR1FPYE
!
redundancy
mode none
!
vlan internal allocation policy ascending
!
interface GigabitEthernet0/0/0
ip address dhcp
ip nat outside
negotiation auto
spanning-tree portfast
!
interface GigabitEthernet0/0/1
ip address 192.168.1.1 255.255.255.0
ip nat inside
negotiation auto
spanning-tree portfast trunk
!
interface GigabitEthernet0/1/0
switchport mode access
shutdown
spanning-tree portfast
!
interface GigabitEthernet0/1/1
switchport access vlan 2
spanning-tree portfast
!
interface GigabitEthernet0/1/2
switchport access vlan 2
spanning-tree portfast
!
interface GigabitEthernet0/1/3
switchport access vlan 2
spanning-tree portfast
!
interface Vlan1
no ip address
!
interface Vlan2
ip address 192.168.2.1 255.255.255.0
ip nat inside
!
ip forward-protocol nd
ip http server
ip http authentication aaa
ip http secure-server
ip nat inside source list 1 interface GigabitEthernet0/0/0 overload
!
ip access-list standard 1
10 permit 192.168.1.0 0.0.0.255
20 permit 192.168.2.0 0.0.0.255
!
control-plane
!
line con 0
transport input none
stopbits 1
line vty 0 4
length 0
!
end
0 Helpful

Go to solution
paul driver
VIP
VIP

‎07-17-2022 04:10 AM - last edited on ‎07-19-2022 02:31 AM by Community Manager

Hello
Try the following:

ip dhcp pool LAN
lease 0 8

ip dhcp pool Vlan2
lease 0 8

default interface range interface GigabitEthernet0/1/0 -3
interface range interface GigabitEthernet0/1/0 -3
switchport host
no shut

interface GigabitEthernet0/1/0/X
switchport mode access
switchport access vlan x


interface GigabitEthernet0/0/1
no ip address 192.168.1.1 255.255.255.0


interface Vlan1
ip address 192.168.1.1 255.255.255.0
ip nat inside

interface Vlan2
ip nat inside

no ip route 192.168.1.0 255.255.255.0 GigabitEthernet0/0/0
no ip route 192.168.2.0 255.255.255.0 GigabitEthernet0/0/0
no ip default-gateway 192.168.1.1 
ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0/0 dhcp

 


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Go to solution
MHM Cisco World
VIP
VIP

‎07-17-2022 07:46 AM

point must check here,
1- ip routing is enable
2-VLAN is add, without add VLAN the SVI never go UP, also you need "see point 3"
3-Port with assign VLAN must UP and in forward state in STP.

otherwise the SVI is down

0 Helpful

Go to solution
AWRS22
Level 1
Level 1

‎07-19-2022 01:13 AM

Everyone thank you for your advise and guide! I finally get the routing working with the information you provide.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card