Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
349
Views
0
Helpful
1
Replies

VLAN assist...

Bruce Kenworthy
Level 1
Level 1

‎08-17-2011 12:43 PM - edited ‎03-04-2019 01:19 PM

I have  the new VLAN that I wish to add to my existing network - 192.168.200.x. The new range will be 192.168.220.x

I have gotten only so far with my configuration on a Cisco 3750 stack (note - the config below) and also have  four 2960 switches in other parts of the building supporting the  rest of the network. My FW is a 5510... I put an inside route on that - "route  inside 192.168.220.0 255.255.255.0.192.168.200.233 1" - which I thought  would take care of things. The FW is 192.168.200.150 - the 3750 switch I am working on is 192.168.200.233.

My  thoughts were that I would add the 192.168.220.x to  the existing  192.168.200.x to increase my addresses - since I am running out.

Here's the 3750 as it stands - my problem is - I cannot figure what I need to make the new "220" addresses available to the same resources that VLAN1 has now. I can ping from a 192.168.200.x address to a laptop configured and connected to the 2/01 port on the switch - but cannot do much the other way.

Here is the switch info...

version 12.2

parser config cache interface

no service pad

service tcp-keepalives-in

service tcp-keepalives-out

service timestamps debug datetime msec localtime

service timestamps log datetime localtime

service password-encryption

!

hostname Company-370-c3750-1

!

boot-start-marker

boot-end-marker

!

logging buffered 65000 informational

logging rate-limit 1 except notifications

enable secret

username admin privilege 15

!

!

aaa new-model

!

!

aaa authentication login localauth local

!

!

!

aaa session-id common

clock timezone EST -5

clock summer-time EDT recurring

switch 1 provision ws-c3750g-24ts-1u

switch 2 provision ws-c3750g-24ts-1u

stack-mac persistent timer 4

system mtu routing 1500

vtp domain plexus

vtp mode transparent

authentication mac-move permit

udld aggressive

ip subnet-zero

no ip source-route

ip routing

ip icmp rate-limit unreachable 1000

no ip domain-lookup

ip domain-name plexusmg.com

!

!

no ip dhcp snooping information option

!

!

crypto pki trustpoint TP-self-signed-2443709824

enrollment selfsigned

subject-name cn=IOS-Self-Signed-Certificate-2443709824

revocation-check none

rsakeypair TP-self-signed-2443709824

!

!

crypto pki certificate chain TP-self-signed-2443709824

certificate self-signed 01

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

  quit

!

!

!

errdisable recovery cause udld

errdisable recovery cause bpduguard

errdisable recovery cause security-violation

errdisable recovery cause channel-misconfig (STP)

errdisable recovery cause pagp-flap

errdisable recovery cause dtp-flap

errdisable recovery cause link-flap

errdisable recovery cause sfp-config-mismatch

errdisable recovery cause gbic-invalid

errdisable recovery cause l2ptguard

errdisable recovery cause psecure-violation

errdisable recovery cause port-mode-failure

errdisable recovery cause dhcp-rate-limit

errdisable recovery cause pppoe-ia-rate-limit

errdisable recovery cause mac-limit

errdisable recovery cause vmps

errdisable recovery cause storm-control

errdisable recovery cause inline-power

errdisable recovery cause arp-inspection

errdisable recovery cause loopback

errdisable recovery cause small-frame

errdisable recovery interval 400

archive

log config

  logging enable

  logging size 500

  notify syslog contenttype plaintext

  hidekeys

!

spanning-tree mode rapid-pvst

spanning-tree loopguard default

spanning-tree logging

spanning-tree portfast bpduguard default

spanning-tree portfast bpdufilter default

spanning-tree etherchannel guard misconfig

spanning-tree extend system-id

!

vlan internal allocation policy ascending

!

vlan 220

name Printer

!

vlan 254

name Management

!

ip tcp synwait-time 5

ip ssh time-out 30

ip ssh version 2

!

!

!

interface Null0

no ip unreachables

!

interface Port-channel1

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

logging event bundle-status

load-interval 30

storm-control broadcast level 20.00

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface Port-channel11

switchport trunk encapsulation dot1q

switchport trunk native vlan 999

switchport mode trunk

switchport nonegotiate

logging event trunk-status

load-interval 30

storm-control broadcast level 20.00

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface Port-channel12

switchport trunk encapsulation dot1q

switchport trunk native vlan 999

switchport mode trunk

switchport nonegotiate

logging event trunk-status

load-interval 30

storm-control broadcast level 20.00

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface GigabitEthernet1/0/1

switchport mode access

switchport nonegotiate

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/2

switchport mode access

switchport nonegotiate

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/3

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/4

switchport mode access

switchport nonegotiate

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/5

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/6

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/7

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/8

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/9

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/10

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/11

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/12

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/13

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/14

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/15

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/16

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/17

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/18

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/19

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/20

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/21

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/22

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/23

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/24

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet1/0/25

switchport trunk encapsulation dot1q

switchport trunk native vlan 999

switchport mode trunk

switchport nonegotiate

logging event trunk-status

load-interval 30

srr-queue bandwidth share 1 70 25 5

srr-queue bandwidth shape 3 0 0 0

priority-queue out

mls qos trust dscp

storm-control broadcast level 20.00

channel-group 11 mode active

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface GigabitEthernet1/0/26

switchport trunk encapsulation dot1q

switchport trunk native vlan 999

switchport mode trunk

switchport nonegotiate

logging event trunk-status

load-interval 30

srr-queue bandwidth share 1 70 25 5

srr-queue bandwidth shape 3 0 0 0

priority-queue out

mls qos trust dscp

storm-control broadcast level 20.00

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface GigabitEthernet1/0/27

switchport trunk encapsulation dot1q

switchport trunk native vlan 999

switchport mode trunk

switchport nonegotiate

logging event trunk-status

load-interval 30

srr-queue bandwidth share 1 70 25 5

srr-queue bandwidth shape 3 0 0 0

priority-queue out

mls qos trust dscp

storm-control broadcast level 20.00

channel-group 12 mode active

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface GigabitEthernet1/0/28

switchport trunk encapsulation dot1q

switchport trunk native vlan 999

switchport mode trunk

switchport nonegotiate

logging event trunk-status

load-interval 30

srr-queue bandwidth share 1 70 25 5

srr-queue bandwidth shape 3 0 0 0

priority-queue out

mls qos trust dscp

storm-control broadcast level 20.00

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface GigabitEthernet2/0/1

switchport access vlan 220

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/2

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/3

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/4

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/5

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/6

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/7

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/8

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/9

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/10

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/11

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/12

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/13

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/14

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/15

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/16

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/17

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/18

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/19

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/20

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/21

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/22

switchport mode access

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/23

switchport mode access

switchport port-security maximum 2

switchport port-security

switchport port-security violation restrict

switchport port-security aging type inactivity

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/24

switchport mode access

switchport port-security maximum 2

switchport port-security

switchport port-security violation restrict

switchport port-security aging type inactivity

spanning-tree portfast

spanning-tree bpduguard enable

!

interface GigabitEthernet2/0/25

switchport trunk encapsulation dot1q

switchport trunk native vlan 999

switchport mode trunk

switchport nonegotiate

logging event trunk-status

load-interval 30

srr-queue bandwidth share 1 70 25 5

srr-queue bandwidth shape 3 0 0 0

priority-queue out

mls qos trust dscp

storm-control broadcast level 20.00

channel-group 11 mode active

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface GigabitEthernet2/0/26

switchport trunk encapsulation dot1q

switchport trunk native vlan 999

switchport mode trunk

switchport nonegotiate

logging event trunk-status

load-interval 30

srr-queue bandwidth share 1 70 25 5

srr-queue bandwidth shape 3 0 0 0

priority-queue out

mls qos trust dscp

storm-control broadcast level 20.00

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface GigabitEthernet2/0/27

switchport trunk encapsulation dot1q

switchport trunk native vlan 999

switchport mode trunk

switchport nonegotiate

logging event trunk-status

load-interval 30

srr-queue bandwidth share 1 70 25 5

srr-queue bandwidth shape 3 0 0 0

priority-queue out

mls qos trust dscp

storm-control broadcast level 20.00

channel-group 12 mode active

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface GigabitEthernet2/0/28

switchport trunk encapsulation dot1q

switchport trunk native vlan 999

switchport mode trunk

switchport nonegotiate

logging event trunk-status

load-interval 30

srr-queue bandwidth share 1 70 25 5

srr-queue bandwidth shape 3 0 0 0

priority-queue out

mls qos trust dscp

storm-control broadcast level 20.00

spanning-tree link-type point-to-point

ip dhcp snooping trust

!

interface Vlan1

ip address 192.168.200.233 255.255.255.0

no ip redirects

no ip unreachables

no ip proxy-arp

!

interface Vlan220

ip address 192.168.220.1 255.255.255.0

no ip redirects

no ip unreachables

no ip proxy-arp

!

interface Vlan254

ip address 192.168.254.1 255.255.255.0

no ip redirects

no ip unreachables

no ip proxy-arp

!

ip classless

ip route 0.0.0.0 0.0.0.0 192.168.200.150

ip route 192.168.220.0 255.255.255.0 192.168.200.150

ip http server

ip http secure-server

!

!

ip sla enable reaction-alerts

!

snmp-server community PlexusMG RW

!

!

line con 0

line vty 0 4

exec-timeout 120 0

logging synchronous

transport preferred ssh

transport input ssh

transport output ssh

line vty 5 15

exec-timeout 5 0

privilege level 15

logging synchronous

transport preferred ssh

transport input ssh

transport output ssh

!

end

Thanks -
Bruce
Labels:
0 Helpful
1 Reply 1

lgijssel
Level 9
Level 9

‎08-17-2011 12:56 PM

Hi Bruce,

Again, your config for the vlan looks OK.

You must only configure ports into it. Example:

conf t

interface GigabitEthernet2/0/16

switchport access vlan 200

end

This will put the port in the new vlan, then configure ip addr & def gw and you should be good.

regards,

Leo

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card