cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

CISCO SWITCHES FOR SMALL and MEDIUM BUSINESS

Introducing the next generation of Cisco Small and Medium Business Switches. Cisco is refreshing its SMB Switch portfolio. Click here  to learn more.


666
Views
0
Helpful
6
Replies
ChrisCross
Beginner

XG 550 As a Router

Hello,

I have a network where by I have been given a LAN block 66.157.179.160/252 and serial IP by my ISP.  I have successfully configured one of the 550 ports with the correct serial IP addr and gave a default route to the remote serial IP so from the 550 I can ping the world.  So then I added the first IP addr of the LAN block to the same interface as the serial IP addr.  I would have thought by enabling "ip routing" I would then be able to then use this to get out to the world for my LAN, but for not.  Any suggests or is this just not doable with the SG550?  Attached is a simple network diagram.  Any help is greatly appreciated!

Basic commands run on the XG550:
  sw01# configure

  sw01# ip routing
  sw01# interface xg 1/0/11
  sw01# ip address <my serial address>
  sw01# ip address 66.156.179.161 255.255.255.252  <== this is the first IP addr of my LAN block

  sw01# end

  sw01# configure
  sw01# ip route 0.0.0.0 0.0.0.0 <serial address of ISP>
  sw01# end

6 REPLIES 6
ChrisCross
Beginner

Forgot, I also did a 'no switchport' on xg 1/0/11
ChrisCross
Beginner

sw01#show ip route
Maximum Parallel Paths: 1 (1 after reset)
IP Forwarding: enabled
Codes: > - best, C - connected, S - static,
R - RIP


S 0.0.0.0/0 [1/4] via <ISP serail>, 01:12:43, te1/0/11
C 10.255.255.0/24 is directly connected, oob
C 66.156.179.160/29 is directly connected, te1/0/11
C <serial IP subnet> is directly connected, te1/0/11

 

sw01#show ip interface


IP Address I/F I/F Status Type Directed Prec Redirect Status
admin/oper Broadcast
------------------ --------- ---------- ------- --------- ---- -------- ------
10.255.255.6/24 oob UP/UP Static disable No enable Valid
66.156.179.161/29 te1/0/11 UP/UP Static disable No enable Valid
<serial ip addr> te1/0/11 UP/UP Static disable No enable Valid

Kasun Bandara is right...! Get a firewall in front of the switch..

Kasun Bandara
Enthusiast

Hi,
you cannot configure 550 for this requirement. 550 is a L3 switch. it cannot perform NAT or PAT between public IP and Local network. you need to have a router to do that function. you can do normal routing in 550 but no NAT.
KB
*** Pls rate and mark solved all useful responses ***
Good Luck

I am not interested in NAT, just straight up routing, e.g. statically define a route (network) from an interface on the switch (IP addr).  That is or is not possible?

 

It is not possible. The 10.0.0.0 – 10.255.255.255, 172.16.0.0 – 172.31.255.255, and 192.168.0.0 – 192.168.255.255 ranges are reserved for private networks only. The public network will not route them. Further, you can't use public IP's that haven't been assigned to you. You absolutely need NAT.