Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
19381
Views
0
Helpful
16
Replies

How to set up VLANs for Cisco SG500 - 28 switch

Go to solution
siempreperligroso
Level 1
Level 1

‎03-01-2014 02:22 PM

Hi,

First of all, this is my first post in here, I hope someone can help me, and please be patient since I am very little experienced.

OK, so let me explain you the scenarion that I am facing and hopefully someone will be able to help me.

We have a Cisco SG500 - 28 port gigabit switch in our workplace.

Our goal, is to create 3 VLANs and seperate the networks between different departements.

VLAN1 (which is the default VLAN in the switch) - will be used for IT department and the management.

VLAN100 - will be used for business .

VLAN200 - will be used for guests who need to connect to the internet through WiFi.

I have created VLAN100 and VLAN200, and VLAN1 is there by default.

I want to use port 13 for VLAN200 and to connect the Wifi access-point there.

The uplink is in port 25.

I would be glad if you could explain me the stuff first in a abstract more general level, and then we can look at the specific scenario that we have.

The Cisco SG500 - 28 gets internet from a Sophos UTM 9 router.

I will need to take care of inter-VLAN routing as well, and subnet, and DHCP

Thanks in advance,

Kindest regards,

D

1 person had this problem
Labels:
0 Helpful
16 Replies 16

Go to solution
Tom Watts
VIP Alumni
VIP Alumni
In response to siempreperligroso

‎03-07-2014 04:09 PM

Hi Desmond, looking at that DHCP pool it looks correct.

For the second part, you waant VLAN 200 to only work on VLAN 200, this is fine. So if you have an access point and everything on VLAN 200 connects to this AP you can make an access list for this. The access list is ingress only, meaning inbound traffic to the interface.

So if you have an access point connecting to port #1. You will need to build the access list and apply it to port number 1. This is assuming you make an access list "deny" with source of VLAN 200 IP subnet to destination of the other subnet you don't want the access to.

Reference the picture on the other post to fill in your numbers then for the ACL binding, it needs to be placed on the interface where VLAN 200 first comes in to the switch (IE, the port the access point connects, ensure you choose to bind by port instead of by VLAN)

-Tom
Please mark answered for helpful posts
http://blogs.cisco.com/smallbusiness/

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/
0 Helpful

Go to solution
nilesh
Level 1
Level 1
In response to Tom Watts

‎02-16-2017 11:00 AM

Hi,

First of all, this is my first post in here, I hope someone can help me, and please be patient since I am very little experienced.

OK, so let me explain you the scenario that I am facing and hopefully someone will be able to help me.

We have a Cisco SG500 - 28 port gigabit switch in our workplace.

Our goal, is to create 3 VLANs and separate the networks between different departments.

VLAN1 (which is the default VLAN in the switch) - will be used for IT department and the management.

VLAN2- will be used for business .

VLAN3 - will be used for Colony

I have created VLAN2 and VLAN3, and VLAN1is there by default.

I want to use port 1 for uplinks and to connect the cyberoam CR200iNG firewall

I want to internet and intranet all VLAN

The uplink is in port 1

I would be glad if you could explain me the stuff first in a abstract more general level, and then we can look at the specific scenario that we have.

The Cisco SG500 - 28 gets internet from a cyberoam CR200iNG firewall.

I want creat  inter-VLAN routing 
Thanks in advance

Nil

0 Helpful
Customers Also Viewed These Support Documents