01-01-2014 06:50 AM
Hi
Can anyone help me to setup this network..... i cant get the VLAN 50 and 100 to access internet, i is it any
wizard for dummies anywere?
I put in a drawing of my network.. pls ask if its anyting info/settings i need to check..
Thx anyway
Solved! Go to Solution.
01-05-2014 03:50 PM
Hi Joar, if your goal is to get VLAN 50 and 100 to the internet, the DHCP service from those VLAN need a default router specified as 192.168.2.1 for VLAN 50 and 192.168.3.1 for VLAN 100. Once you specify the default router you will notice your client leases will have a default gateway of 192.168.3.1 and 192.168.2.1 respectively.
On the RV042 router, first enable multiple subnet feature under IPv4 tab click the button enable multiple subnet then type in the LAN ip address 192.168.3.1 with mask 255.255.255.0 and then make a second entry 192.168.2.1 with mask 255.255.255.0 and save this.
Once done, you need to make a couple static routes on the router
Destination IP address - 192.168.3.0 mask 255.255.255.0 gateway 192.168.3.1 hop count 1
Destination IP address - 192.168.2.0 mask 255.255.255.0 gateway 192.168.2.1 hop count 1
The static route has to be done correctly otherwise whatever subnet the router is not a member of will not work.
-Tom
Please mark answered for helpful posts
01-01-2014 10:48 AM
First I would change the the managment ip for vlan 1 on the 10 port switch to .254 or anything other than .1 which the RV042 is using, then disable the DHCP server for vlan 1 in that switch since you can't have two dhcp servers for the same vlan.
Since the RV isn't vlan aware I believe you need to make the port on the adjacent 10 port switch that connects to the RV an access port for vlan 1 and then assign that port an IP in the vlan 1 subnet. So something like 192.168.1.2 and then make that the default gateway for your switches so that everything down stream routes to that port. On the RV you then need to set up advance routes to your other vlans pointing to the 192.168.1.2 (or whatever you made it) ip of the switch port that connecs to RV on that first 10 port switch.
You'll also need access rules for the WAN to allow access the the other vlans via any VPN tunnels I believe if you intend to have remote access.
FYI, I'm by no means an expert, actually more a novice so this may be completely wrong but I think it's right and you can give it a try until someone wise chimes in with something to the contrary.
01-02-2014 07:04 AM
Hi
i did try this... stil can get the vlans on internet, i put up some new info about my switch its like this:
config-file-header
switch437188
v1.3.5.58 / R750_NIK_1_35_647_358
CLI v1.0
set system mode router
file SSD indicator plaintext
@
vlan database
vlan 50,100
exit
voice vlan oui-table add 0001e3 Siemens_AG_phone________
voice vlan oui-table add 00036b Cisco_phone_____________
voice vlan oui-table add 00096e Avaya___________________
voice vlan oui-table add 000fe2 H3C_Aolynk______________
voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
voice vlan oui-table add 00d01e Pingtel_phone___________
voice vlan oui-table add 00e075 Polycom/Veritel_phone___
voice vlan oui-table add 00e0bb 3Com_phone______________
ip dhcp server
ip dhcp pool network DB800
address low 192.168.3.100 high 192.168.3.200 255.255.255.0
lease infinite
exit
ip dhcp pool network Guest
address low 192.168.2.100 high 192.168.2.200 255.255.255.0
lease infinite
exit
bonjour interface range vlan 1,100
hostname switch437188
username cisco password
ip telnet server
!
interface vlan 1
ip address 192.168.1.2 255.255.255.0
no ip address dhcp
!
interface vlan 50
name DB800
ip address 192.168.2.1 255.255.255.0
!
interface vlan 100
name ciscosb-guest
ip address 192.168.3.1 255.255.255.0
!
interface gigabitethernet6
switchport trunk allowed vlan add 50,100
!
interface gigabitethernet7
switchport trunk allowed vlan add 50,100
!
interface gigabitethernet8
switchport mode general
switchport general allowed vlan add 50,100 tagged
!
interface gigabitethernet10
switchport mode access
!
exit
ip default-gateway 192.168.1.1
ip route 192.168.2.0 /24 192.168.1.1
ip route 192.168.3.0 /24 192.168.1.1
ip ssh-client key rsa key-pair
---- BEGIN SSH2 PRIVATE KEY ----
Comment: RSA Private Key
-----END CERTIFICATE-----
Thx
Joar
01-02-2014 08:35 AM
Ho Joar, aside from assigning IP interface to each VLAN and defining the default-gateway on the switch all configuration goes on your router. You will need to enable multiple subnet and define the subnets used on the SX300 layer 3 switch then you need to make static routes pointing back to each SVI of the layer 3 switch.
-Tom
Please mark answered for helpful posts
01-02-2014 02:36 PM
Hi Tom
I didi think i did put the switch on L3 mode... and i cant put a ip-pool on the vlan1, i got a errer with cant have 2 dhcp severs on same range.. how can i see if i got the layer 3 correct ? .. i put in settings agen
config-file-header
Layer3Switch
v1.3.5.58 / R750_NIK_1_35_647_358
CLI v1.0
set system mode router
file SSD indicator encrypted
@
ssd-control-start
ssd config
ssd file passphrase control unrestricted
no ssd file integrity control
ssd-control-end
!
vlan database
vlan 10,50,100
exit
voice vlan oui-table add 0001e3 Siemens_AG_phone________
voice vlan oui-table add 00036b Cisco_phone_____________
voice vlan oui-table add 00096e Avaya___________________
voice vlan oui-table add 000fe2 H3C_Aolynk______________
voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
voice vlan oui-table add 00d01e Pingtel_phone___________
voice vlan oui-table add 00e075 Polycom/Veritel_phone___
voice vlan oui-table add 00e0bb 3Com_phone______________
ip dhcp server
ip dhcp pool network DB800
address low 192.168.3.100 high 192.168.3.200 255.255.255.0
lease infinite
exit
ip dhcp pool network Guest
address low 192.168.2.100 high 192.168.2.200 255.255.255.0
lease infinite
exit
bonjour interface range vlan 1,100
hostname Layer3Switch
username cisco password
ip ssh server
snmp-server server
ip telnet server
!
interface vlan 1
ip address 192.168.1.2 255.255.255.0
no ip address dhcp
!
interface vlan 10
name Test
ip address 192.168.10.1 255.255.255.0
!
interface vlan 50
name Drembox
ip address 192.168.2.1 255.255.255.0
!
interface vlan 100
name ciscosb-guest
ip address 192.168.3.1 255.255.255.0
!
interface gigabitethernet6
switchport trunk allowed vlan add 50,100
!
interface gigabitethernet7
switchport trunk allowed vlan add 50,100
!
interface gigabitethernet8
switchport trunk allowed vlan add 50,100
!
interface gigabitethernet9
switchport mode access
!
interface gigabitethernet10
switchport mode access
!
exit
ip default-gateway 192.168.1.1
ip route 192.168.2.0 /24 192.168.1.1
ip route 192.168.3.0 /24 192.168.1.1
encrypted ip ssh-client key rsa key-pair
---- BEGIN SSH2 ENCRYPTED PRIVATE KEY ----
Thx
Joar
01-02-2014 07:00 PM
In your config "set system mode router" means it's setup as L3. What port on the switch are you using to connect to your RV042G? The RV is only port based vlan so it's not "vlan aware" so you can't use a port setup in trunk mode.
01-05-2014 03:50 AM
Hi
I use GI10 for the RV-042G, but do I need to disable DHCP in the RV-042G ? And use 192.168.1.2 as gateway .. And :) the statisk route from VLAN's to std. Gateway on the RV-042G...
Tanks for all help :) i try to learn this :)
Joar
Sent from Cisco Technical Support iPad App
01-05-2014 03:50 PM
Hi Joar, if your goal is to get VLAN 50 and 100 to the internet, the DHCP service from those VLAN need a default router specified as 192.168.2.1 for VLAN 50 and 192.168.3.1 for VLAN 100. Once you specify the default router you will notice your client leases will have a default gateway of 192.168.3.1 and 192.168.2.1 respectively.
On the RV042 router, first enable multiple subnet feature under IPv4 tab click the button enable multiple subnet then type in the LAN ip address 192.168.3.1 with mask 255.255.255.0 and then make a second entry 192.168.2.1 with mask 255.255.255.0 and save this.
Once done, you need to make a couple static routes on the router
Destination IP address - 192.168.3.0 mask 255.255.255.0 gateway 192.168.3.1 hop count 1
Destination IP address - 192.168.2.0 mask 255.255.255.0 gateway 192.168.2.1 hop count 1
The static route has to be done correctly otherwise whatever subnet the router is not a member of will not work.
-Tom
Please mark answered for helpful posts
01-06-2014 01:23 PM
Hi Tom!
Thx, now it work on wire.. but i cant get the WAP321 to connect to any other then VLAN1 (untagget), i did put the prt on SG-300 in trunk and added vlan 1, vlan 50 and vlan 100 ..
Joar
01-22-2014 10:08 AM
Hmm i dont think anyone know how to setup Wap-123 :) with multiple VLAN's
Sent from Cisco Technical Support iPhone App
01-22-2014 04:28 PM
Hi Joar, what specific set up do you want with the WAP? Just some SSID on different VLAN or do you try to do something else?
-Tom
Please mark answered for helpful posts
01-23-2014 10:12 AM
Hi,
Yes, i way to get 3 SSID's on my VLAN's
I do use 3 Wap-321 like the drawing of my network in the top of topic :)
Thx :)
Sent from Cisco Technical Support iPhone App
02-07-2014 06:54 AM
Ho Joar, apologies for a late reply.
To try to allow your SSID to match up, there is a LAN setting where the default VLAN is 1, this is for the management connection that you can configure the access point on.
When you manage your wireless SSID under Wireless -> Network, when you edit the SSID, there is a VLAN box to fill in a VLAN ID. Choose something simple such as 2, 3, 4 etc.
Once you specify the VLAN per SSID you need to configure your switch to understand those VLAN coming in to the port.
So if your management VLAN is 1 and your other SSID is VLAN 2, 3 and 4 you need to configure a switch port as 1 untagged 2,3,4 tagged
Sample command would be like this
config t
int gi1
switchport mode trunk
switchport trunk allowed vlan add 2-4
-Tom
Please mark answered for helpful posts
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide