cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1798
Views
0
Helpful
7
Replies

Cisco 3550 switch Vlan routing

rstahldlhost
Level 1
Level 1

Having some problems routing my VLAN2 across my Cisco Catalyst 3550.  I can ping the interface on VLAN2 (116.68.91.1),

I can ping the interface on VLAN1 (10.0.0.1), but I cannot ping the inside interface of my Pix from VLAN2.  The IP of

my inside interface of my PIX is (10.0.0.2) and I can ping on the switch from VLAN1 (10.0.0.1) to the Pix at (10.0.0.2)

So something must be wrong with my routing out on VLAN2.  Any help would be greatly appreciated.

7 Replies 7

Reza Sharifi
Hall of Fame
Hall of Fame

Hi,

Do you have a default route on the switch pointing to the firewall?

ip route 0.0.0.0 0.0.0.0 10.0.0.2 (the inside interface of the firewall)

or

ip default-gateway 10.0.0.2

HTH

i just tried both of thoes commands .... and the sh ip route command shows

Gateway of last resort is 10.0.0.2 to network 0.0.0.0

still can not ping from vlan 2

rstahldlhost
Level 1
Level 1

Here is my :sh ip route

results

Gateway of last resort is 10.0.0.2 to network 0.0.0.0

     10.0.0.0/30 is subnetted, 1 subnets

C       10.0.0.0 is directly connected, Vlan1

C    116.68.91.0/24 is directly connected, Vlan2

S*   0.0.0.0/0 [1/0] via 10.0.0.2

aswell as ip brief

Dlhost#sh ip int brief

Interface              IP-Address      OK? Method Status                Protocol

Vlan1                  10.0.0.1          YES manual    up                    up

Vlan2                  116.68.91.1     YES NVRAM   up                    up

Vlan3                  10.1.0.1          YES manual    up                    down

FastEthernet0/1        unassigned      YES unset  up                    up

FastEthernet0/2        unassigned      YES unset  up                    up

FastEthernet0/3        unassigned      YES unset  down                  down

FastEthernet0/4        unassigned      YES unset  down                  down

Anyone ?!

can you share the interface(physical interface and logical interface) and rouiting config of your pix and the switch respective config

Is your PC you are pinging from directly connected to the 3550?

How is every thing connected together?

mlund
Level 7
Level 7

Do the pix have a route to 116.68.91.0 net pointing to 10.0.0.1, check with "show route"command.

Otherwise the pix cannot send traffic towards vlan2.

I had a similar problem but I solved it !!

In my lab environment, I was trying to do ping from interface vlan 1 on my 3550 and my PC connected via UTP cable. ( I know it's a very easy thing to do, but...)  but it didn't work.

Only testing  with ping, the conection between my PC and my 3550:

     the ping from mi PC to 3550 was succesful, but ....

     the ping from my 3550 to mi PC,  wasn't succesful.

Even in mac table on 3550, there was my PC's mac address and the source ping from the router was the ip of interface vlan 1.

The problem was the PC configuration. When you configure a new network connection, the wizard requests to you choose the connection type according to the physical environment ( home network, work network or public network) This is one of the possible reasons, choosing the public connection type .

Another reason can be your antivirus. The antivirus ask you the protection type that you want: can be strict protection or shared. You must select shared protection type.

Regards ...