Cisco 3550 switch Vlan routing

rstahldlhost · ‎10-21-2012

Having some problems routing my VLAN2 across my Cisco Catalyst 3550. I can ping the interface on VLAN2 (116.68.91.1),

I can ping the interface on VLAN1 (10.0.0.1), but I cannot ping the inside interface of my Pix from VLAN2. The IP of

my inside interface of my PIX is (10.0.0.2) and I can ping on the switch from VLAN1 (10.0.0.1) to the Pix at (10.0.0.2)

So something must be wrong with my routing out on VLAN2. Any help would be greatly appreciated.

Reza Sharifi · ‎10-21-2012

Hi,

Do you have a default route on the switch pointing to the firewall?

ip route 0.0.0.0 0.0.0.0 10.0.0.2 (the inside interface of the firewall)

or

ip default-gateway 10.0.0.2

HTH

rstahldlhost · ‎10-21-2012

i just tried both of thoes commands .... and the sh ip route command shows

Gateway of last resort is 10.0.0.2 to network 0.0.0.0

still can not ping from vlan 2

rstahldlhost · ‎10-21-2012

Here is my :sh ip route

results

Gateway of last resort is 10.0.0.2 to network 0.0.0.0

10.0.0.0/30 is subnetted, 1 subnets

C 10.0.0.0 is directly connected, Vlan1

C 116.68.91.0/24 is directly connected, Vlan2

S* 0.0.0.0/0 [1/0] via 10.0.0.2

aswell as ip brief

Dlhost#sh ip int brief

Interface IP-Address OK? Method Status Protocol

Vlan1 10.0.0.1 YES manual up up

Vlan2 116.68.91.1 YES NVRAM up up

Vlan3 10.1.0.1 YES manual up down

FastEthernet0/1 unassigned YES unset up up

FastEthernet0/2 unassigned YES unset up up

FastEthernet0/3 unassigned YES unset down down

FastEthernet0/4 unassigned YES unset down down

Anyone ?!

shine pothen · ‎10-21-2012

can you share the interface(physical interface and logical interface) and rouiting config of your pix and the switch respective config

Reza Sharifi · ‎10-21-2012

Is your PC you are pinging from directly connected to the 3550?

How is every thing connected together?

mlund · ‎10-22-2012

Do the pix have a route to 116.68.91.0 net pointing to 10.0.0.1, check with "show route"command.

Otherwise the pix cannot send traffic towards vlan2.

alvarosarmientorincon · ‎07-09-2013

I had a similar problem but I solved it !!

In my lab environment, I was trying to do ping from interface vlan 1 on my 3550 and my PC connected via UTP cable. ( I know it's a very easy thing to do, but...) but it didn't work.

Only testing with ping, the conection between my PC and my 3550:

the ping from mi PC to 3550 was succesful, but ....

the ping from my 3550 to mi PC, wasn't succesful.

Even in mac table on 3550, there was my PC's mac address and the source ping from the router was the ip of interface vlan 1.

The problem was the PC configuration. When you configure a new network connection, the wizard requests to you choose the connection type according to the physical environment ( home network, work network or public network) This is one of the possible reasons, choosing the public connection type .

Another reason can be your antivirus. The antivirus ask you the protection type that you want: can be strict protection or shared. You must select shared protection type.

Regards ...