Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1147
Views
0
Helpful
6
Replies

XG 550 As a Router

ChrisCross
Level 1
Level 1

‎01-24-2019 07:21 PM

Hello,

I have a network where by I have been given a LAN block 66.157.179.160/252 and serial IP by my ISP.  I have successfully configured one of the 550 ports with the correct serial IP addr and gave a default route to the remote serial IP so from the 550 I can ping the world.  So then I added the first IP addr of the LAN block to the same interface as the serial IP addr.  I would have thought by enabling "ip routing" I would then be able to then use this to get out to the world for my LAN, but for not.  Any suggests or is this just not doable with the SG550?  Attached is a simple network diagram.  Any help is greatly appreciated!

Basic commands run on the XG550:
  sw01# configure

  sw01# ip routing
  sw01# interface xg 1/0/11
  sw01# ip address <my serial address>
  sw01# ip address 66.156.179.161 255.255.255.252  <== this is the first IP addr of my LAN block

  sw01# end

  sw01# configure
  sw01# ip route 0.0.0.0 0.0.0.0 <serial address of ISP>
  sw01# end

Labels:
Preview file
61 KB
0 Helpful
6 Replies 6

ChrisCross
Level 1
Level 1

‎01-24-2019 07:25 PM

Forgot, I also did a 'no switchport' on xg 1/0/11
0 Helpful

ChrisCross
Level 1
Level 1

‎01-24-2019 07:29 PM

sw01#show ip route
Maximum Parallel Paths: 1 (1 after reset)
IP Forwarding: enabled
Codes: > - best, C - connected, S - static,
R - RIP


S 0.0.0.0/0 [1/4] via <ISP serail>, 01:12:43, te1/0/11
C 10.255.255.0/24 is directly connected, oob
C 66.156.179.160/29 is directly connected, te1/0/11
C <serial IP subnet> is directly connected, te1/0/11

 

sw01#show ip interface


IP Address I/F I/F Status Type Directed Prec Redirect Status
admin/oper Broadcast
------------------ --------- ---------- ------- --------- ---- -------- ------
10.255.255.6/24 oob UP/UP Static disable No enable Valid
66.156.179.161/29 te1/0/11 UP/UP Static disable No enable Valid
<serial ip addr> te1/0/11 UP/UP Static disable No enable Valid

0 Helpful

Networkinguy
Level 1
Level 1
In response to ChrisCross

‎02-04-2019 12:46 PM

Kasun Bandara is right...! Get a firewall in front of the switch..

0 Helpful

Kasun Bandara
VIP
VIP

‎01-24-2019 07:49 PM

Hi,
you cannot configure 550 for this requirement. 550 is a L3 switch. it cannot perform NAT or PAT between public IP and Local network. you need to have a router to do that function. you can do normal routing in 550 but no NAT.
KB
*** Pls rate and mark solved all useful responses ***
Good Luck
Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB
0 Helpful

ChrisCross
Level 1
Level 1
In response to Kasun Bandara

‎02-04-2019 08:20 PM

I am not interested in NAT, just straight up routing, e.g. statically define a route (network) from an interface on the switch (IP addr).  That is or is not possible?

 

0 Helpful

GregF1
Level 1
Level 1
In response to ChrisCross

‎02-18-2019 10:51 AM

It is not possible. The 10.0.0.0 – 10.255.255.255, 172.16.0.0 – 172.31.255.255, and 192.168.0.0 – 192.168.255.255 ranges are reserved for private networks only. The public network will not route them. Further, you can't use public IP's that haven't been assigned to you. You absolutely need NAT.   

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Switch products supported in this community
Cisco Business Product Family
  • CBS110
  • CBS220
  • CBS250
  • CBS350
Cisco Switching Product Family
  • 110
  • 200
  • 220
  • 250
  • 300
  • 350
  • 350X
  • 550X
Customers Also Viewed These Support Documents