Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1049
Views
0
Helpful
6
Replies

Layer 3 vlan internet issues

Go to solution
sampson01
Level 1
Level 1

‎01-03-2017 01:04 PM - edited ‎03-08-2019 08:47 AM

I have a L3 3750 that I am using for all vlan routing.  I have this connected to a sonicwall and that is the default route.  

The primary vlan is able to connect to the internet without a problem, however none of the other vlan's are able to.  I have set ip route 0.0.0.0 0.0.0.0 172.17.11.254 (sonicwall lan ip) however I am still unable to ping out on any other vlan.  I have also setup a route back to the switch vlans on the sonicwall.  

Troubleshooting:
Ping from any client to switch and sonicwall goes through

Ping from switch to all vlans and sonicwall goes through

Ping from sonicwall to any of the vlans goes through (EX. sonciwall can ping client pc's in the new vlans)

Not sure what else I am missing.

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Georg Pauwen
VIP
VIP

‎01-03-2017 01:34 PM

Hello,

is the Sonicwall doing the NAT ? Does the NAT policy for outbound traffic include all VLAN traffic ?

View solution in original post

0 Helpful

Go to solution
Georg Pauwen
VIP
VIP
In response to sampson01

‎01-03-2017 01:52 PM

Hello,

the Sonicwall by default does many-to-one NATing for traffic coming in the X0 interface and going out the X1 interface. Anything coming in through any other interface is not translated.

Check if there are any existing policies configured that might be causing anything other than the primary Vlan IP addresses to be dropped.

http://help.sonicwall.com/help/sw/eng/published/1337844490_6.0.1Network_NAT_Policies/Network_netPolicies.htm#XREF_79770_Network_NAT

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Georg Pauwen
VIP
VIP

‎01-03-2017 01:34 PM

Hello,

is the Sonicwall doing the NAT ? Does the NAT policy for outbound traffic include all VLAN traffic ?

0 Helpful

Go to solution
sampson01
Level 1
Level 1
In response to Georg Pauwen

‎01-03-2017 01:37 PM

Sonicwall is doing the NAT'ing.  Not sure about the outbound traffic policy.  I did not set one up, but was not aware I needed to.  Any idea what this would look like?

0 Helpful

Go to solution
Georg Pauwen
VIP
VIP
In response to sampson01

‎01-03-2017 01:52 PM

Hello,

the Sonicwall by default does many-to-one NATing for traffic coming in the X0 interface and going out the X1 interface. Anything coming in through any other interface is not translated.

Check if there are any existing policies configured that might be causing anything other than the primary Vlan IP addresses to be dropped.

http://help.sonicwall.com/help/sw/eng/published/1337844490_6.0.1Network_NAT_Policies/Network_netPolicies.htm#XREF_79770_Network_NAT

0 Helpful

Go to solution
sampson01
Level 1
Level 1
In response to Georg Pauwen

‎01-04-2017 01:13 PM

There was a nat policy that was nat'ing the specific vlan subnet to another subnet for vlan nat translation.  I was mis-configured.  Once I adjusted this it came up.  Thanks!

0 Helpful

Go to solution
Georg Pauwen
VIP
VIP
In response to sampson01

‎01-04-2017 01:20 PM

Good to know that you got it resolved !

0 Helpful

Go to solution
Krash Mole
Level 1
Level 1

‎01-04-2017 04:46 AM

Hi,

I will advise you to create subnet interfaces on your router (sonicwall)  (ROAS) to make it easier.

I would to find out where you have set your default route (switch or router)?


Regards.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card