I uploaded a picture of network, my goal is to have traffic on vlan 192.168.25.0 (i.e. user PC with ip 192.168.25.70)

that wants to go to 10.141.85.0 to be redirected to 192.168.25.221 on the same vlan. I tried to do a static route in the cisco 3560 but it never saves, after I apply it and refresh it's gone.

So you configured a route

ip route 10.141.85.0 255.255.255.0 192.168.25.221

to your 3560?  does it actually allow you to enter this command?      

if it does can you do a "sh ip route 10.141.85.1" and tell us where it point to?

also are you doing a "wr mem" when you add the config to your switch?

I tried that from the GUI and telnet, it does not. If I do the " sh ip route 10.141.85.1"

it says it routes to itself as vlan1 which sounds right. I am not sending  wr mem because I havent gotten far enough to save anything.

do you actually go into configuration mode and add the static route as I indicated, or would it not let you?

It does not let me. If I go in from Cisco Network Assistant I'll add the route, apply the route and then save config. As soon add I refresh it's gone again. So I'll do it with a command line and it errors on the "1" in 192.

on the command line when you enter like:

sw1(config)#ip route 10.141.85.0 255.255.255.0 ?
  A.B.C.D            Forwarding router's address
  Async              Async interface
  Auto-Template      Auto-Template interface
  BVI                Bridge-Group Virtual Interface
  CTunnel            CTunnel interface
  DHCP               Default Gateway obtained from DHCP
  Dialer             Dialer interface
  FastEthernet       FastEthernet IEEE 802.3
  Filter             Filter interface
  Filtergroup        Filter Group interface
  GigabitEthernet    GigabitEthernet IEEE 802.3z
  GroupVI            Group Virtual interface
  Lex                Lex interface
  Loopback           Loopback interface
  Null               Null interface
  Port-channel       Ethernet Channel of interfaces
  Portgroup          Portgroup interface
  Pos-channel        POS Channel of interfaces
  Tunnel             Tunnel interface
  Vif                PGM Multicast Host interface
  Virtual-TokenRing  Virtual TokenRing
  Vlan               Catalyst Vlans
  fcpa               Fiber Channel

do you get something similar?

Nothing similar at all, I was just thinking. If I have a vlan already setup with the same IP scheme and I try to do my route won't my switch automatically route it internally?

Vlan1(Switch Management) on my switch already has the same scheme "10.141.85.0" I am trying to route to another firewall that has 2 vlans " Vlan1 10.141.85.0" and vlan 2 "192.168.25.221" these are on a different device, A netgate device not managed by me at all. 

I think I am going to have to change the IP configuration on my Vlan1 in order to facilitate the ip routing.

Am I correct?

My understanding is that when 192.168.25.70 sends traffic to 10.141.85.0 you want the traffic to be redirected to 192.168.25.221.

If so firstly 10.141.85.0 is not a host address. Do you mean traffic sent to that subnet or did you make a typo and it should be a host address.

Secondly you cannot do this by adding routes.

If the default gateway for 192.168.25.70 client is on the 3560 then you could possibly use PBR on your 3560 but that depends on the license you have on the switch.

I say possibly because the PBR would be sending the traffic back out of the same interface it was received on and  I have seen issues with this on L3 switches.

What does a "sh ver" show in terms of the license you currently have ?

Jon

I'm sorry, 

when 192.168.25.70 sends traffic to 10.141.85.12 I want the traffic to be redirected to 192.168.25.221.

Attached is a screenshot of sh ver, I did not see any license info.

You are running IP Base so you can't use PBR.

So can you confirm that you have an SVI (int vlan <x>) for both subnets on the 3560 ?

It sounds like you do, just want to make sure

If so then there really isn't a lot you can do with the way it is setup.

What exactly do you need ie.

do you simply want all traffic sent to 10.141.85.12 to be sent to 192.168.25.221 but leave the destination IP the same.

Or do you want to actually change the destination IP to 192.168.25.221 ?

Jon

I simply want all traffic sent to 10.141.85.12 to be sent to 192.168.25.221 but leave the destination IP the same.

How do I verify SVI? I believe I saw that somewhere I just can't remember where exactly.

Do a "sh ip int br" on your switch and do you see vlan interfaces for both subnets ?

Jon

Here it is