Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
405
Views
0
Helpful
1
Replies

VLAN's on a SG300 behind ASA5505 can't access the internet

richard.allsopp
Level 1
Level 1

‎02-01-2015 04:22 AM

Hi, 

I'm hoping someone can help me with this - I have an SG300 in L3 mode with three test VLAN's:

VLAN100 (Workstations) - 10.1.100.1/24

VLAN240 (Management) - 10.1.240.1/24

VLAN250 (WAN-Access) - 10.1.250.1/30

I've configured port 28 on the switch as a trunk and the same on the ASA and set the native VLAN as 250 on both. I've added a static route on the SG300 pointing to the ASA and a static route on the ASA pointing back to the 10.1.0.0/16 networks. All VLAN's can ping devices on other VLAN's, however only VLAN250 can get the internet. I can see traffic from the other SG300 VLAN's hitting the ASA and the ASA can ping the devices, so I don't know why it's not working.

Any help would be very much appreciated.

-Rich

Labels:
0 Helpful
1 Reply 1

richard.allsopp
Level 1
Level 1

‎02-01-2015 04:54 AM

I'm an idiot, each VLAN on the switch needs a PAT on the ASA :-)

0 Helpful
Customers Also Viewed These Support Documents