- last edited on by
Translator
Hello users,
I have some problems regarding PC / Laptop & Server pinging problem after VLAN configuration & inter-VLAN routing.
- The laptops can reach the switches, routers and the server but they can't reach the laptops from other building (same VLAN laptops)
- The server can reach the switches and routers but it can't reach any laptop
Did I miss any configuration? I did included my related files right here with the
.pkt file
and its questions and my addressing table in .pdf (it can be wrong since it is my own answer).
Thanks in advance!
Accepted Solutions
- last edited on by
Translator
Hello @syazwanmarzuki,
there is a misunderstood.
Your server has got
IP 192.18.10.1/24
and its Gateway is itself....... I don't understand the role of R-DSEC Router regarding its configuration.
You don't have anymore L3 equipement on your topology...then no more SVI acted as Gateway for each VLAN.
Then for what you expected is OK ; only PC on the same department can ping each other since they are in the same VLAN no need og Gateway!
But Server in VLAN 10 is only pingable frome other VLAN 10 ressources.....
Also adjust config on S-DSEC Switch if you want VLAN 10 ping Server MAIN-01:
Adujst neflow configuration on R-SDEC:
You will have sample on netflow configurator on SERVER-MAIN-01:
Follow this for netflow config.:https://www.packettracernetwork.com/tutorials/packet-tracer-netflow.html
- last edited on by
Translator
Hello @syazwanmarzuki,
First, configure IP add ont the sub Int ; for example on Router R-BLOK-0:
Ping between laptops from engineerig to Administration should be OK (left side)
Other things, you can not have same IP ADD
(i.e. 192.168.10.0/24 - vlan 10)
on different routing segment. It should not work, you'll need to stretch vlan 10 (L2VPN).
You can have same vlan ID because it is a local ID, but on your context you should do subnetting -- subnetting the IP ADD for Engineering subnet and administration subnet. For example:
R-BLOK-0: vlan 10 - Engineering 192.168.10.0/25 and administration 192.168.20.0/25
R-BLOC-N: vlan 10- Engineering 192.168.10.128/25 and administration 192.168.20.128/25 (keep same for vlan 30 and 40).
On R-BLOK-0 side no need to have sub int for vlan 30-40! Same idea on R-BLOK-N side.
Proposition:
-No need multiple links between L2 switches
-Subnetting (Engineering/administration)
-R-BLOK-0 advertise (redistribute) 192.168.10.0/25 and 192.168.20.0/25
-R-BLOK-N advertise (redistribute) 192.168.10.128/25 - 192.168.20.128/25 - 192.168.30.0/24 and 192.168.40.0/24
- last edited on by
Translator
Delete SVI on you L2 Switches. For example, you have on the left side, engineering vlan,
IP add 192.168.10.1/24 on the Sw
and on the R-BLOK-O too!!!! Let's this IP on your L3 equipement, such as R-BLOK-R ; it serves as Gateway also for your vlan!
Why you wan SVI on your L2 switch? The only one should be an SVI for management purpose!
I delete on SW-BLOK-O-1 SVI and ip default gateway
LAPTOP can ping its Gateway hosted on R-BLOC-O
I delete also SVI on S-BLOC-O-2 and now vlan 10 ping vlan 20 on left side !
- last edited on by
Translator
Hello M02@rt37 and @Martin L ,
First of all, thanks for spending time on configuring and troubleshooting my
.pkt file
However, there are a lot of misunderstanding and misconception. I beg for apologise from both of you.
My goal and objective is to create fastest topology and fastest internet connection since the question did told me:
The minimum bandwidth for internet access is 100 Mbps and is expected to increase significantly in few years ahead.
Discuss the most appropriate physical layer medium for the network connectivity of the following cases:
1) Within the Blok-O and Blok-N
2) All the way from Blok-O and Blok-N to the main server room in SDEC.
You may assume that the switches can support any transmission medium.
I didn't insert in the first place (the first .zip file), I'm sorry again.
So I tried to implement mesh topologies in both LAN and MAN connection. So I tried to connect mesh topology with mesh topology. As M02@rt37 and @Martin L said earlier, I suppose that this topology is impossible. Therefore, I change the topology from connecting mesh topology with another mesh topology to connect star topology (MAN) with another star topology (LAN).
It works! Here's the design I made:
Achieved wanted objectives:
- LAPTOP-O-01 and LAPTOP-O-02 able to ping LAPTOP-N-05 and LAPTOP-N-06 only (all under VLAN 10)
- LAPTOP-O-03 and LAPTOP-O-04 able to ping LAPTOP-N-07 and LAPTOP-N-08 only (all under VLAN 20)
However,
- The server SERVER-MAIN-01 cannot ping all laptops (end devices) and all laptops cannot ping the server
How to fix this? Because after fixing this server ping problem, I want to make the server for network monitoring. I want to implement Net flow for network monitoring.
@Martin L , I didn't study about VSLM subnetting and NAT/PAT. I just follow what the YouTube says, I'm sorry. And I already adjust all end devices to use the 192.168.10.0/24 IP address block. I leave the updated
.pkt file
and the whole question below.
Thanks in advance and sorry for miscommunication.
- last edited on by
Translator
Hello @syazwanmarzuki,
there is a misunderstood.
Your server has got
IP 192.18.10.1/24
and its Gateway is itself....... I don't understand the role of R-DSEC Router regarding its configuration.
You don't have anymore L3 equipement on your topology...then no more SVI acted as Gateway for each VLAN.
Then for what you expected is OK ; only PC on the same department can ping each other since they are in the same VLAN no need og Gateway!
But Server in VLAN 10 is only pingable frome other VLAN 10 ressources.....
Also adjust config on S-DSEC Switch if you want VLAN 10 ping Server MAIN-01:
Adujst neflow configuration on R-SDEC:
You will have sample on netflow configurator on SERVER-MAIN-01:
Follow this for netflow config.:https://www.packettracernetwork.com/tutorials/packet-tracer-netflow.html
