Hello

I’m sure we are not using NAT on the 3750 stack, we have the MPLS router then the next hop is the 3750 stack that has all users/servers connecting, only the 3750 stack can ping www.google.com

I’m sending you the running-config from the 3750 stack.

aaa session-id common

clock timezone EST -5

switch 1 provision ws-c3750g-48ps

switch 2 provision ws-c3750g-48ps

switch 3 provision ws-c3750g-48ps

system mtu routing 1500

ip routing

!

!

!

!

crypto pki trustpoint HTTPS_SS_CERT_KEYPAIR

enrollment selfsigned

serial-number

revocation-check none

rsakeypair HTTPS_SS_CERT_KEYPAIR

!

!

crypto pki certificate chain HTTPS_SS_CERT_KEYPAIR

certificate self-signed 01

  3082026C 308201D5 A0030201 02020101 300D0609 2A864886 F70D0101 04050030

  45311530 13060355 0403130C 41494B45 4E445253 5730302E 312C300F 06035504

  05130843 39423330 41303030 1906092A 864886F7 0D010902 160C4149 4B454E44

  52535730 302E301E 170D3933 30333232 30313436 32325A17 0D323030 31303130

  30303030 305A3045 31153013 06035504 03130C41 494B454E 44525357 30302E31

  2C300F06 03550405 13084339 42333041 30303019 06092A86 4886F70D 01090216

  0C41494B 454E4452 53573030 2E30819F 300D0609 2A864886 F70D0101 01050003

  818D0030 81890281 8100B22E CD840E74 2FEC53E5 BAA058A8 F4397737 708B3041

  310F6672 5EDDB2E2 37B5E109 F78B3E28 04CB333E 091D550A 8AC7191E 29CCD737

  425A59D6 26E8EC85 26DA32E7 B0C15FE2 43955A0B 7DCA03D0 FD1F645D EEF70572

  D6E4AD30 978A8929 4EED3853 5A129896 4C68D1E0 55F28A3C 5580CCC3 572AAF32

  BBC81775 8CB9B518 832F0203 010001A3 6C306A30 0F060355 1D130101 FF040530

  030101FF 30170603 551D1104 10300E82 0C41494B 454E4452 53573030 2E301F06

  03551D23 04183016 80149BE0 6FB07735 B84139B2 AB2C77F6 9A617A2D 8DAF301D

  0603551D 0E041604 149BE06F B07735B8 4139B2AB 2C77F69A 617A2D8D AF300D06

  092A8648 86F70D01 01040500 03818100 5CDF2640 027F109B 0EBD8B6E 2F769539

  E58BFC33 59970A0E 867BAC0A 1CABF839 D48F4BAE 4BEB0168 2454F448 42D33C8B

  55B873B9 836FDABB 9F098495 BA7E6BFB 83876DD3 67455011 086D48D2 EF01E955

  560481A8 97B8025C 7C4EC485 AE5FEE89 E960A87D C3A5510F 27D917E0 D5570F87

  55165947 27EBC62F D7F66100 B92112EB

  quit

!

!

!

!

spanning-tree mode pvst

spanning-tree extend system-id

spanning-tree vlan 110,120 priority 4096

!

vlan internal allocation policy ascending

!

ip ssh version 2

!

!

interface Port-channel1

description DRESX00

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel2

description DRESX01

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel3

description DRESX02

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel4

description ESX03 A

switchport access vlan 172

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel5

description DRESX04

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel6

description DRESX05

switchport access vlan 101

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel7

description ESX06 A

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel8

description ESX07 A

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel9

description ESX08 A

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel10

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

spanning-tree portfast trunk

!

interface Port-channel11

description VSOFT_ESX09

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel12

description VSOFTESX10

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface Port-channel13

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

spanning-tree portfast trunk

!

interface GigabitEthernet1/0/1

description DRESX00:ETH4:MGMT2

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/2

description TRUNK to GADRSW00:24

switchport access vlan 102

switchport trunk encapsulation dot1q

switchport mode trunk

spanning-tree portfast

!

interface GigabitEthernet1/0/3

!

interface GigabitEthernet1/0/4

description DRESX00:ETH7:NFS2

switchport access vlan 174

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/5

description RP1 ETH 2

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/6

description RP2 ETH 2

switchport access vlan 173

switchport trunk encapsulation dot1q

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/7

description <**CPFW_Eth0_Wan_interface**>

switchport access vlan 555

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/8

description DRESX03:ETH1:VMOTION

switchport access vlan 2

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/9

description DRESX03:ETH8:vSwitch2

switchport access vlan 443

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 4 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet1/0/10

!

interface GigabitEthernet1/0/11

description DRFS01

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/12

description Engineer2

switchport access vlan 173

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet1/0/13

description DRESX01:ETH6:vSwitch2

switchport access vlan 443

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 2 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet1/0/14

!

interface GigabitEthernet1/0/15

description NFS SERVER:ETH1:vlan174

switchport access vlan 174

switchport trunk encapsulation dot1q

switchport mode access

switchport nonegotiate

speed 1000

channel-group 8 mode on

spanning-tree portfast

!

interface GigabitEthernet1/0/16

description DR_ICLV

switchport access vlan 110

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/17

description NFS SERVER:ETH2:vlan174

switchport access vlan 174

switchport trunk encapsulation dot1q

switchport mode access

switchport nonegotiate

speed 1000

channel-group 11 mode on

spanning-tree portfast

!

interface GigabitEthernet1/0/18

description NFS SERVER:ETH4:vlan174

switchport access vlan 174

switchport trunk encapsulation dot1q

switchport mode access

switchport nonegotiate

speed 1000

channel-group 1 mode on

spanning-tree portfast

!

interface GigabitEthernet1/0/19

description DRESX03:ETH4:SC2

switchport access vlan 173

switchport mode access

switchport nonegotiate

!

interface GigabitEthernet1/0/20

description DRESX04:ETH999:vSwitch2

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 5 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet1/0/21

description UPLINK TO SC LAN going to wall port E

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 3 mode on

spanning-tree portfast

!

interface GigabitEthernet1/0/22

description DRESX02:ETH10:NFS2

switchport access vlan 174

switchport trunk encapsulation dot1q

switchport mode access

switchport nonegotiate

speed 1000

channel-group 2 mode on

spanning-tree portfast

!

interface GigabitEthernet1/0/23

description DRESX04:ETH999:MGMT2

switchport access vlan 173

switchport mode access

switchport nonegotiate

spanning-tree portfast

!

interface GigabitEthernet1/0/24

description UPLINK to SC_LB_port16 vlan 104

switchport access vlan 140

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/25

description CSIVSU ETH0

switchport access vlan 110

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/26

description OLD DR-VIC-SQL not needed

switchport access vlan 173

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet1/0/27

description DRSANSPA

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/28

description DRESX00:ETH6:vSwitch1

switchport access vlan 2

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 1 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet1/0/29

description DRESX01:ETH4:MGMT2

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/30

description DRESX03:ETH10:NFS2

switchport access vlan 174

switchport mode access

switchport nonegotiate

spanning-tree portfast

!

interface GigabitEthernet1/0/31

description DRESX05:ETH999:MGMT2

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/32

description DRESX01:ETH7:NFS2

switchport access vlan 174

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/33

description DRESX03:ETH6:vSwitch1

switchport access vlan 172

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 4 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet1/0/34

description DRESX05:ETH999:vSwitch2

switchport access vlan 101

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 6 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet1/0/35

description DRESX02:ETH1:VM

switchport access vlan 2

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/36

description DRESX02:ETH4:MGMT2

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/37

switchport access vlan 5

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/38

description DRESX02:ETH8:vSwitch2

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 3 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet1/0/39

description DRESX02:ETH6:vSwitch2

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 3 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet1/0/40

!

interface GigabitEthernet1/0/41

description SCFW SCVLAN110 eth10

switchport access vlan 110

switchport mode access

switchport nonegotiate

speed 1000

spanning-tree portfast

!

interface GigabitEthernet1/0/42

description SCFW SCVLAN120 eth12

switchport access vlan 120

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/43

description SCFW SCVLAN140 eth13

switchport access vlan 140

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/44

description SCFW SCVLAN114 eth6

switchport access vlan 114

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/45

description <**DR_KVM32Port**>

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/46

description mgmt ntwk

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/47

description <**To_Windstream_RT_MPLS_FA0/0:0**>

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet1/0/48

switchport trunk encapsulation dot1q

switchport trunk allowed vlan 1,5,97-99,101,102,104-110,120,140,172,173,193

switchport mode trunk

switchport nonegotiate

!

interface GigabitEthernet1/0/49

!

interface GigabitEthernet1/0/50

!

interface GigabitEthernet1/0/51

!

interface GigabitEthernet1/0/52

!

interface GigabitEthernet2/0/1

description DRESX00:ETH0:MGMT1

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/2

!

interface GigabitEthernet2/0/3

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

shutdown

speed 1000

channel-group 1 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet2/0/4

description DRESX01:ETH0:MGMT

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/5

description DRESX01:ETH1:VM

switchport access vlan 2

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/6

description DRESX01:ETH5:NFS1

switchport access vlan 174

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/7

description RP1 ETH1

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/8

description RPA2 ETH1

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/9

switchport access vlan 173

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet2/0/10

description GADR_BACKUP

switchport access vlan 110

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/11

description DRVSMICR

switchport access vlan 110

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/12

description DRVSARCHIVE

switchport access vlan 110

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/13

description ESX04_server_Nic4:vlan173

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/14

description ESX05_server_Nic4:vlan173

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/15

description DRMGMT

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/16

description SANRTRMG

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/17

description DRSANSPB

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/18

description Testing PCS Slow Speed

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/19

description DRFSW02

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/20

description PCS test PC port

switchport access vlan 110

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/21

description DRESX02:ETH0:MGMT1

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/22

description DRESX02:ETH9:vSwitch2

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 3 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet2/0/23

description NFS SERVER:ETH5

switchport access vlan 174

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/24

description DRESX02:ETH5:NFS1

switchport access vlan 174

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/25

description NFS SERVER:ETH3

switchport access vlan 174

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/26

description DRESX00:ETH3:vSwitch2

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 1 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet2/0/27

description DRESX03:ETH0:MGMT1

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/28

description DRESX03:ETH9:vSwitch3

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 4 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet2/0/29

description DRESX03:ETH5:NFS

switchport access vlan 174

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/30

description DRESX01:ETH3:vSwitch2

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 2 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet2/0/31

!

interface GigabitEthernet2/0/32

description NFS SERVER mgmt

switchport access vlan 174

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/33

description DRESX00:ETH5:NFS1

switchport access vlan 174

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/34

!

interface GigabitEthernet2/0/35

description DRESX00:ETH1:VM

switchport access vlan 2

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/36

description DRESX04:ETH999:MGMT

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/37

description DRESX04:ETH999:VMOTION

switchport access vlan 2

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/38

description DRESX04:ETH999:vSwitch1

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 5 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet2/0/39

description DRESX04:ETH999:vSwitch3

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 5 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet2/0/40

description DRESX05:ETH999:MGMT

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/41

description DRESX05:ETH999:VMOTION

switchport access vlan 2

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet2/0/42

description DRESX05:ETH999:vSwitch1

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 6 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet2/0/43

description DRESX05:ETH999:vSwitch3

switchport trunk encapsulation dot1q

switchport mode trunk

switchport nonegotiate

speed 1000

channel-group 6 mode on

spanning-tree portfast trunk

!

interface GigabitEthernet2/0/44

!

interface GigabitEthernet2/0/45

switchport access vlan 5

!

interface GigabitEthernet2/0/46

switchport access vlan 5

!

interface GigabitEthernet2/0/47

switchport access vlan 110

spanning-tree portfast

!

interface GigabitEthernet2/0/48

switchport access vlan 5

!

interface GigabitEthernet2/0/49

shutdown

!

interface GigabitEthernet2/0/50

shutdown

!

interface GigabitEthernet2/0/51

shutdown

!

interface GigabitEthernet2/0/52

shutdown

!

interface GigabitEthernet3/0/1

switchport access vlan 555

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/2

description <**CSIFW00 ETH1_DR_Aiken**>

switchport access vlan 101

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/3

description <**CSIFW00 ETH0_External_DR_Aiken**>

switchport access vlan 555

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/4

description <**CSIFW00 ETH17_DR_Aiken**>

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/5

description <**CSIFW00 ETH16_DR_Aiken**>

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/6

description <**CSIFW00 ETH15_DR_Aiken**>

switchport access vlan 172

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/7

description <**CSIFW00 ETH14_DR_Aiken**>

switchport access vlan 114

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/8

description <**CSIFW00 ETH10_DR_Aiken**>

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/9

description <**CSIFW00 ETH11_DR_Aiken**>

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/10

description <**CSIFW00 ETH12_DR_Aiken**>

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/11

description <**CSIFW00 ETH13_DR_Aiken**>

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/12

description <**CSIFW00 ETH7_DR_Aiken**>

switchport access vlan 107

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/13

description <**CSIFW00 ETH8_DR_Aiken**>

switchport access vlan 108

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/14

description <**CSIFW00 ETH9_DR_Aiken**>

switchport access vlan 109

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/15

description <**CSIFW00 ETH6_DR_Aiken**>

switchport access vlan 106

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/16

description <**CSIFW00 ETH2_DR_Aiken**>

switchport access vlan 102

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/17

description <**CSIFW00 ETH3_DR_Aiken**>

switchport access vlan 103

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/18

description <**CSIFW00 ETH4_DR_Aiken**>

switchport access vlan 104

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/19

description <**CSIFW00 ETH5_DR_Aiken**>

switchport access vlan 105

switchport mode access

shutdown

spanning-tree portfast

!

interface GigabitEthernet3/0/20

!

interface GigabitEthernet3/0/21

!

interface GigabitEthernet3/0/22

!

interface GigabitEthernet3/0/23

!

interface GigabitEthernet3/0/24

!

interface GigabitEthernet3/0/25

!

interface GigabitEthernet3/0/26

!

interface GigabitEthernet3/0/27

!

interface GigabitEthernet3/0/28

!

interface GigabitEthernet3/0/29

!

interface GigabitEthernet3/0/30

description <**Andrew_7_13_12**>

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/31

description <**Andrew_7_13_12**>

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/32

!

interface GigabitEthernet3/0/33

!

interface GigabitEthernet3/0/34

!

interface GigabitEthernet3/0/35

!

interface GigabitEthernet3/0/36

!

interface GigabitEthernet3/0/37

!

interface GigabitEthernet3/0/38

!

interface GigabitEthernet3/0/39

!

interface GigabitEthernet3/0/40

!

interface GigabitEthernet3/0/41

!

interface GigabitEthernet3/0/42

!

interface GigabitEthernet3/0/43

description <**DR_KVM**>

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/44

description <**VMservers_1-16-13_EB**>

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/45

description <**VMservers_1-16-13_EB**>

switchport access vlan 173

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/46

switchport access vlan 100

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/47

description <**EB_NewPort_1_16_13**>

switchport access vlan 110

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/48

switchport access vlan 555

switchport mode access

spanning-tree portfast

!

interface GigabitEthernet3/0/49

!

interface GigabitEthernet3/0/50

!

interface GigabitEthernet3/0/51

!

interface GigabitEthernet3/0/52

!

interface Vlan1

ip address 10.1.2.1 255.255.255.0

!

interface Vlan2

description dr vmotion

no ip address

!

interface Vlan3

ip address 172.16.3.1 255.255.255.0

!

interface Vlan4

description dr vmotion

no ip address

!

interface Vlan5

description <**Aiken_DR_192.168.10_Network**>

ip address 192.168.10.2 255.255.255.0

!

interface Vlan97

no ip address

shutdown

!

interface Vlan98

no ip address

shutdown

!

interface Vlan99

ip address 10.10.4.2 255.255.255.0

shutdown

!

interface Vlan100

ip address 192.168.100.10 255.255.255.0

!

interface Vlan101

description <**Aiken_DR_Failover_Vlan**>

ip address 10.10.1.254 255.255.255.0

shutdown

!

interface Vlan102

description <**Aiken_DR_Failover_Vlan**>

ip address 10.10.2.254 255.255.255.0

shutdown

!

interface Vlan103

description <**Aiken_DR_Failover_Vlan**>

ip address 10.10.3.2 255.255.255.0

shutdown

!

interface Vlan104

description <**Aiken_DR_Failover_Vlan**>

no ip address

!

interface Vlan105

description <**Aiken_DR_Failover_Vlan**>

ip address 10.10.5.2 255.255.255.0

shutdown

!

interface Vlan106

description <**Aiken_DR_Failover_Vlan**>

ip address 10.10.6.254 255.255.255.0

shutdown

!

interface Vlan107

description <**Aiken_DR_Failover_Vlan**>

ip address 10.10.7.254 255.255.255.0

shutdown

!

interface Vlan108

description <**Aiken_DR_Failover_Vlan**>

ip address 10.10.8.254 255.255.255.0

shutdown

!

interface Vlan109

description <**Aiken_DR_Failover_Vlan**>

ip address 10.10.9.254 255.255.255.0

shutdown

!

interface Vlan110

ip address 10.10.10.254 255.255.255.0

!

interface Vlan114

description <**Aiken_DR_Failover_Vlan**>

ip address 10.10.14.254 255.255.255.0

shutdown

!

interface Vlan120

ip address 10.10.20.254 255.255.255.0

!

interface Vlan140

ip address 10.10.40.254 255.255.255.0

!

interface Vlan172

no ip address

!

interface Vlan173

ip address 172.16.10.3 255.255.255.0

!

interface Vlan174

ip address 172.16.20.3 255.255.255.0

!

interface Vlan555

description Aiken_Internet

ip address 184.95.133.254 255.255.255.0

!

ip default-gateway 10.1.2.1

ip classless

ip route 0.0.0.0 0.0.0.0 184.95.133.1

ip route 10.1.1.0 255.255.255.0 10.1.2.42

ip route 10.10.1.0 255.255.255.0 10.1.2.42

ip route 10.10.2.0 255.255.255.0 10.1.2.42

ip route 10.10.4.0 255.255.255.0 10.1.2.42

ip route 10.10.6.0 255.255.255.0 10.1.2.42

ip route 10.10.7.0 255.255.255.0 10.1.2.42

ip route 10.10.8.0 255.255.255.0 10.1.2.42

ip route 10.10.9.0 255.255.255.0 10.1.2.42

ip route 172.16.1.0 255.255.255.0 10.1.2.42

ip route 192.168.0.0 255.255.255.0 10.1.2.42

no ip http server

no ip http secure-server

!

ip sla enable reaction-alerts

Thank you

Hello stephan,

I dont think the 3750's support Nat? and your lan addressing is not routable - Has this been working or is this a new

setup -

res

Paul

Please don't forget to rate any posts that have been helpful.

Thanks.

Hello

We have no SDM - what we have is the LAN with one 3750 stacked that includes three switches, connecting to the MPLS router from our Windstream provider, the router has two interface one for internal network, the other for internet access using 184.95.133.1, our 3750 stack has the Vlan 555 configure with the 184.95.133.254 in the same subnet as the MPLS router.

The 3750 stack can ping the MPLS router, able to ping www.google.com o r 8.8.8.8 but my internal users / servers on different Vlans than the 555, they are able to ping the 3750 stack their Vlan default gateway, not able to ping beyond the switch to the internet.

I do not understand why the switch can ping the internet but my users can't

Thank you Sir

  Hello,

"our Windstream provider, the router has two interface one for internal network, the other for internet access-"

On the this router would be where the translation will be done - do you have access to this router? ( I doubt you do)

res

Paul

Please don't forget to rate any posts that have been helpful.

Thanks.

I do not have access

We need to call our Windstream provider for all changes

Hello Stehan,

Can you ping the internet sourced from the SVI interfaces - If so, this could be a possible LAN Issue

Has this been working in the past? Have any changes been made recenty?

Can you post the run config of an access switch?

res

Paul

Please don't forget to rate any posts that have been helpful.

Thanks.

What is SVI

I'm able to ping the internet from the Cisco 3750 stack, not able to ping the internet from computers/servers on the LAN

no matter what Vlan they are in

Thanks

Has this been working in the past? Have any changes been made recenty?

Hello,

Yes this worked until we changed the LAN facing interface that connects the MPLS router, as to remove the Layer 2 Vlans we had replacing this with layer IP routing statements, had Windstream remove all the sub interfaces they had for Layer 2 Vlans adding IP routing statements for all networks we have on the LAN. This should never cause the other WAN interface in the MPLS router to prevent LAN users from using the internet right?

I just hang up the phone with our Windstream engineer who checked the WAN interface in there router along with the router config and confirmed everything looks good.

I guess the problem is on our 3750 Cisco stack - I've sent the running-config from the 3750, do you see anything that would cause our internal LAN VLAN's not able to ping www.google.com or from using the internet

Thank you Sir

Hello Stephen,

This is from your config -> when you ping 8.8.8.8, as source address is used IP of Vlan555 interface.

interface Vlan555

description Aiken_Internet

ip address 184.95.133.254 255.255.255.0

ip route 0.0.0.0 0.0.0.0 184.95.133.1

Could you perform this test?

#ping 8.8.8.8 source Vlan 555

#ping 8.8.8.8 source Vlan 100

#ping 8.8.8.8 source Vlan 140

#ping 8.8.8.8 source Vlan 174

Could you post output of these pings just to confirm theory that you need to NAT your traffic.

Best Regards

Please rate all helpful posts and close solved questions

What we see from using the ping commands listed above

AIKENDRSW00#ping 8.8.8.8 source vlan 555

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 8.8.8.8, timeout is 2 seconds:

Packet sent with a source address of 184.95.133.254

!!!!!

AIKENDRSW00#ping 8.8.8.8 source vlan 100

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 8.8.8.8, timeout is 2 seconds:

Packet sent with a source address of 192.168.100.10

.....

Success rate is 0 percent (0/5)

AIKENDRSW00#ping 8.8.8.8 source vlan 140

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 8.8.8.8, timeout is 2 seconds:

Packet sent with a source address of 192.168.100.10

.....

Success rate is 0 percent (0/5)

AIKENDRSW00#ping 8.8.8.8 source vlan 174

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 8.8.8.8, timeout is 2 seconds:

Packet sent with a source address of 192.168.100.10

.....

Success rate is 0 percent (0/5)

Thank you

You see that when you use as source interface Vlan 555 (in source address of ICMP packet is 184.95.133.254) which is public routable IP, ping is successful.

But in other cases, when private addresses are used as source IPs, ping is unsuccessfull. That means that either your provider using filter which drop traffic with private addresses in IP header or any other transit provider do that.

Even if any provider drop your traffic (which they should), if ICMP packet arrive on Google server, this server drop this packet because server do not know where to route ICMP reply.

So you need to NAT your LAN networks or ask your provider to do that for you.

Best Regards

Please rate all helpful posts and close solved questions

Hello,

I’m confused a little bit

We have the MPLS router with the WAN interface on subnet 184.95.133.0 /24 we own the Class C subnet from Windstream our provider.

We configured our Cisco 3750 layer2/3 switch with one VLAN for the internet access on VLAN 555 with IP address 184.95.133.254, and then we type in IP route 0.0.0.0 0.0.0.0 to 184.95.133.1 the MPLS WAN interface.

All servers/computers in VLAN 555 have internet access when using the Public addresses 184.95.133.x subnet – no other way to configure our Cisco 3750 switch to send all internet traffic through that MPLS WAN interface from our 3750 stack.

What I’m asking is there another way to configure the cisco 3750 switch to allow us the ability to send all internet traffic 0.0.0.0 0.0.0.0 to the MPLS WAN interface 184.95.133.1?

If not - is it possible to setup NAT on the cisco 3750 stack?

If so please explain how

Thank you