Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
735
Views
0
Helpful
1
Replies

CBS250 VLAN Configuration Help - DHCP/Traffic Issue to Sophos Firewall

TomB2024
Level 1
Level 1

‎01-04-2024 07:54 AM

Hello and thank you in advance to anyone able to direct/help me resolve the issue.  I've been at this for days trying to learn and resolve the issue myself and conceded that I need some assistance on configuring VLAN on the CBS250.  Basically, no device receives an IP address from the DHCP server when I change the Interface VLAN mode of the uplink port from Access to Trunk on the CBS250.  When in Access mode, only VLAN 1 devices receives an IP address.

I am working with a Sophos XGS 126 firewall that is the DHCP servers.  Sophos tech support reviewed the VLAN configurating on the firewall and confirmed all settings are correct.  The tech says there is no traffic from the CBS250 on the uplink port to the firewall.

 

Sophos XGS 126

  • Port 1 ( LAN1) - 10.9.1.0/24 - DHCP: 10.9.1.100-200
  • Port 2 ( WAN)
  • Port 3 (LAN2) & F2 (WiFi) - Bridged - 192.168.1.0/24 - DHCP:192.168.1.100-200
    • VLAN10 - 192.168.10.1 - DHCP:192.168.10.100-200
    • VLAN20 - 192.168.20.1 - DHCP: 192.168.20.100-200
    • VLAN30 - 192.168.30.1 - DHCP: 192.168.30.100-200
    • VLAN40 - 192.168.40.1 - DHCP: 192.168.40.100-200
    • VLAN99 - 192.168.99.1 - DHCP: 192.168.99.100-200

 

CBS250-24PP-4G

  • For testing purpose, all ports except 18 and 24 will remain as Access on the default VLAN 1
  • Port 17 is my PC1 on VLAN 1
  • Port 18 is my PC2 on VLAN 20
    • Should Port 18 be Layer 2 or 3
  • Port 24 is the set to Trunk to uplink to the Sophos XGS 126
    • Should the Trunk be Layer 2 or 3
  • IPv4 Interface Table
    • VLAN 1 - 192.168.1.266
    • VLAN 10 - 192.168.10.1
    • VLAN 20 - 192.168.20.1
    • VLAN 30 - 192.168.30.1
    • VLAN 40 - 192.168.40.1
    • VLAN 99 - 192.168.99.1
  • Do I need to configure any other IPv4 functions?  DHCP Relay? Static Routes?

 

 

Labels:
0 Helpful
1 Reply 1

marce1000
Hall of Fame
Hall of Fame

‎01-04-2024 09:37 AM

 

 - I would presume you need DHCP relay on the vlans (cbs250) pointing to the DHCP server (address) on the Sophos ; the included video is only an example but the principle is the same. For testing (first) you should be able to ping the intended DHCP server address from a host on one of the VLANS on the cbs250 ; this should work too before configuring the DHCP relay :

https://www.youtube.com/watch?v=AIgNYQ6ftjQ

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
Cisco Tech Talk - DHCP Relay Agent Configuration Two Switches and Windows DHCP Server
Cisco Tech Talk - DHCP Relay Agent Configuration Two Switches and Windows DHCP Server
youtube.com/watch?v=AIgNYQ6ftjQ
In this edition of Cisco Tech Talk, I will demonstrate how to configure DHCP Relay on CBS350 and CBS250 switches.
0 Helpful
Customers Also Viewed These Support Documents