Solved: VLAN setup

jontamplin · ‎08-05-2011

Hi,

I am completely new to VLAN's (infact fairly new to networking), so please forgive me if this is an amateur question.

We have recently bought a Cisco SF 200-24P switch. I would like to do the following:

We have 4 offices that we want to completely seperate, except for a single server which will be a 3CX (IP Phone) server. They will also need access to the same internet line.

What i am wanting is:

Port 1: WAN

Port 2: Server

Ports 3 - 8: Office 1

Ports 9 - 14: Office 2

Ports 15- 19: Office 3

Ports 20 - 24: Office 4

The Router on Port 1 will be doing DHCP and the offices will need to be on different IP ranges from each other, whilst being able to access the internet and communicating with the server on port 2.

Is this possible?

Much apreciation for any help given.

Jon

lgijssel · ‎08-05-2011

Hi Jon,

This is largely correct. Only Port1 will need to be a trunk containing vlans 2-7.

As far as I'm concerned you can do not need to remove vlan 1, it is most likely not even possible.

DHCP will work as you describe. You need to configure an ip helper on each router vlan-interface.

regards,

Leo

View solution in original post

Jon Marshall · ‎08-05-2011

Jon

In order to help you it would be better if you moved this thread to the "Small Business Switches" forum as this forum deals mainly with Catalyst switches so you may be waiting a while here for an answer -

https://supportforums.cisco.com/community/netpro/small-business/switches?view=discussions

Jon

jontamplin · ‎08-05-2011

Thanks for the quick response Jon, havemoved it now

lgijssel · ‎08-05-2011

The switch you bought is a layer2 device.

This implies you can configure several vlans for the various offices which are then by default separated.

You need the router -or a firewall- to hook-up the office-LAN's to the Internet. The switch will not be able to do this.

In order for this to work, the router should support dot1q trunking on Port1.

The server can then be put in a dedicated vlan which is also routed via the router on Port 1.

regards,

Leo

jontamplin · ‎08-05-2011

Hi Leo,

Thanks for you're reply. at present we do not have a router that supports dot1q trunking, but i shall get one.

so, router / firewall aside, am i correct in thinking that on the switch i would create 6 VLANs? ie.

VLAN ID: 2 - assigned to ports 1

VLAN ID: 3 - assigned to port 2

VLAN ID: 4 - assigned to ports 3 - 8: Office 1

VLAN ID: 5 - assigned to ports 9 - 14: Office 2

VLAN ID: 6 - assigned to ports 15- 19: Office 3

VLAN ID: 7 - assigned to ports 20 - 24: Office 4

from what i understand, by default, all 24 ports are set to VLAN ID: 1. Do i therfore remove this VLAN?

Will DHCP work in a way that each VLAN can have a different IP Range (i.e. Office 1 on 192.168.1.x , office 2 on 192.168.2.x etc)?

Kind Regards

Jon

lgijssel · ‎08-05-2011

Hi Jon,

This is largely correct. Only Port1 will need to be a trunk containing vlans 2-7.

As far as I'm concerned you can do not need to remove vlan 1, it is most likely not even possible.

DHCP will work as you describe. You need to configure an ip helper on each router vlan-interface.

regards,

Leo

jontamplin · ‎08-05-2011

Hi Leo,

Many thanks for your quick answers.

Kind Regards

Jon