Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1264
Views
3
Helpful
9
Replies

Cisco CB350 VLAN DNS Problem

Go to solution
spatuz
Level 1
Level 1

‎10-15-2023 08:11 AM

Hi. i'm new for the network cisco device so i bought a CB350 and start doing some test. I' ve configured a network with VLAN as show in the attached picture but i'm finding some problem to give connectivity to the device PC1 under VLAN10 if i use the gateway of the sonicwall firewall 192.168.0.1 there is no problem to reach internet, the pc have 8.8.8.8 as DNS, if i use the gateway of the VLAN10 192.168.0.2 in the cisco SB350 i can't reach internet but i can reach other deivce in other VLAN. Attached the configuration of the Cisco Layer 3. The result i would like to reach is pass all the Routing between VLAN to the Cisco CB350 and later go in internet with a dedicated VLAN between the switch and the firewall. Other option are accepted.

spatuz_0-1697382437203.png

switcha03d93#show running-config
config-file-header
switcha03d93
v3.3.0.16 / RCBS3.3_950_377_202
CLI v1.0
file SSD indicator encrypted
@
ssd-control-start
ssd config
ssd file passphrase control unrestricted
no ssd file integrity control
ssd-control-end cb0a3fdb1f3a1af4e4430033719968c0
!
!
unit-type-control-start
unit-type unit 1 network gi uplink none
unit-type-control-end
!
vlan database
vlan 10,20,30
exit
voice vlan oui-table add 0001e3 Siemens_AG_phone
voice vlan oui-table add 00036b Cisco_phone
voice vlan oui-table add 00096e Avaya
voice vlan oui-table add 000fe2 H3C_Aolynk
voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
voice vlan oui-table add 00d01e Pingtel_phone
voice vlan oui-table add 00e075 Polycom/Veritel_phone
voice vlan oui-table add 00e0bb 3Com_phone
bonjour interface range vlan 1
hostname switcha03d93
username Simone password encrypted $15$ZEyKIu5BQNTjRMWk$0QRSEi5z350Q8jc89snnPIAlnJM41h9kmroeb+FFpgSwKsnvcNUrqoA68Pf6UxaYVnu0lkc0CQcEY5M3GL4XpA== privilege 15
ip name-server 8.8.8.8
!
interface vlan 1
no ip address dhcp
!
interface vlan 10
ip address 192.168.0.2 255.255.255.0
!
interface vlan 20
ip address 192.168.1.1 255.255.255.0
!
interface GigabitEthernet1
switchport access vlan 10
!
interface GigabitEthernet2
switchport access vlan 20
!
interface GigabitEthernet5
switchport access vlan 10
!
interface GigabitEthernet9
switchport access vlan 10
!
interface GigabitEthernet10
switchport access vlan 10
!
exit

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
M02@rt37
VIP
VIP

‎10-15-2023 08:56 AM - edited ‎10-15-2023 09:16 AM

Hello @spatuz,

CBS350 is a Layer3 Switch (Thanks ;)) Add route static to route traffic towards Sonicwall

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.

View solution in original post

0 Helpful
9 Replies 9

Go to solution
M02@rt37
VIP
VIP

‎10-15-2023 08:56 AM - edited ‎10-15-2023 09:16 AM

Hello @spatuz,

CBS350 is a Layer3 Switch (Thanks ;)) Add route static to route traffic towards Sonicwall

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to spatuz

‎10-15-2023 09:08 AM

FW have defualt route SW dont have 

Add defualt route and check again.

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎10-15-2023 09:15 AM

Agreed Switch do not have Default route or ip route command  - so as suggested add that necessary config and test it.

Note, if your VLAN 20 need to work as expected, since 1 is gateway on the switch, i suggest to have ip route command

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
spatuz
Level 1
Level 1

‎10-15-2023 09:31 AM

Okay thank you guys. I have add this static route

ip name-server 8.8.8.8
!
interface vlan 1
no ip address dhcp
!
interface vlan 10
ip address 192.168.0.2 255.255.255.0
!
interface vlan 20
ip address 192.168.1.1 255.255.255.0
!
interface vlan 30
shutdown
!
interface GigabitEthernet1
switchport access vlan 10
!
interface GigabitEthernet2
switchport access vlan 20
!
interface GigabitEthernet5
switchport access vlan 10
!
interface GigabitEthernet9
switchport access vlan 10
!
interface GigabitEthernet10
switchport access vlan 10
!
exit
ip route 192.168.0.0 /24 192.168.0.1 metric 2


Leave in the PC the gateway 192.168.0.2 but is not working. I have add a rules to the firewall to enable any to any connection.

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to spatuz

‎10-15-2023 09:36 AM

You need to make right decision, is the Sonic FW need to be Gateway for devices or Switch. (what is your intention here)

I suggest to use Switch as Layer 2, Sonicwall FW as Gateway.  (192.168.0.1)

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
MHM Cisco World
VIP
VIP
In response to spatuz

‎10-15-2023 09:39 AM

Add defualt route to SW 

And enable ip routing 

0 Helpful

Go to solution
spatuz
Level 1
Level 1

‎10-15-2023 09:48 AM

i want to have the device connected to the switch the gateway of the VLAN assigned, 192.168.0.1 in caso of the VLAN 10, and go in internet with the device in the VLAN 10. Actually i have configure the switch as show here:
file SSD indicator encrypted
@
ssd-control-start
ssd config
ssd file passphrase control unrestricted
no ssd file integrity control
ssd-control-end cb0a3fdb1f3a1af4e4430033719968c0
!
!
unit-type-control-start
unit-type unit 1 network gi uplink none
unit-type-control-end
!
vlan database
vlan 10,20,30
exit
voice vlan oui-table add 0001e3 Siemens_AG_phone
voice vlan oui-table add 00036b Cisco_phone
voice vlan oui-table add 00096e Avaya
voice vlan oui-table add 000fe2 H3C_Aolynk
voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
voice vlan oui-table add 00d01e Pingtel_phone
voice vlan oui-table add 00e075 Polycom/Veritel_phone
voice vlan oui-table add 00e0bb 3Com_phone
bonjour interface range vlan 1
hostname switcha03d93
username Simone password encrypted $15$ZEyKIu5BQNTjRMWk$0QRSEi5z350Q8jc89snnPIAlnJM41h9kmroeb+FFpgSwKsnvcNUrqoA68Pf6UxaYVnu0lkc0CQcEY5M3GL4XpA== privilege 15
ip name-server 8.8.8.8
!
interface vlan 1
no ip address dhcp
!
interface vlan 10
ip address 192.168.0.2 255.255.255.0
!
interface vlan 20
ip address 192.168.1.1 255.255.255.0
!
interface vlan 30
shutdown
!
interface GigabitEthernet1
switchport access vlan 10
!
interface GigabitEthernet2
switchport access vlan 20
!
interface GigabitEthernet5
switchport access vlan 10
!
interface GigabitEthernet9
switchport access vlan 10
!
interface GigabitEthernet10
switchport access vlan 10
!
exit
ip route 0.0.0.0 /0 192.168.0.1 metric 2

 

 

and is not working i receive a DNS error in the web page, i can ping the sonicwall and the other device connected to the switch
ip routing is enable and static route is add

0 Helpful

Go to solution
spatuz
Level 1
Level 1
In response to spatuz

‎10-15-2023 09:52 AM

ops ... i forgot to unflag something in the sonicwall.
it was just necessary add the static route. Thank you all !!!

Customers Also Viewed These Support Documents