new to vlans and have questions and need help

itadmin · ‎03-01-2013

what we have:

sw1: sge2010p (master) layer2

sw2: sge2010p (2 in stack) layer2

T1 internet (windstream) (dhcp)

Comcast internet

win 2008 R2 DC / DHCP server/ AD

DC and staff in the 10.0.0.*/24 range

guest and T1 in the 10.0.10.*/24 range

8 AP's with two SSID's staff and guest

want staff wireless to get DHCP from win2008 srv, login to DC, internet coming from comcast , guest wireless getting DHCP from T1 router on seperate ISP

want to set sw1: g1/7 -g1/14 for AP's and route traffic for staff to the DC and internet(comcast), and route the guest traffic out the T1 internet (internet access only)

dont want staff or guest to be able to talk to each other.

I know vlans are the way to go. I have been reading and searching on the internet for a few hours today. I know I need to create the vlans in the web interface of the switch. I know I need the ports (g1/7-g1/14) to be in trunk mode. still a little lost (alot lost really) on what I need to do to get this config working. what keeps the dhcp servers from conflicting (t1 and win 2008 srv). do I need a vlan for the Staff wireless since it is on the same thing as the DC ( assume the default vlan). Very confused, need pointers on how to do this.

jawad-mukhtar · ‎03-01-2013

You wil create Two Vlan

Vlan 100

10.0.0.5/24

Vlan 10

10.0.10.5/24

You will Need L3 Device Router to Make communicate possible mean to say intervlan routing

If u have Router Like 2800 Series

and Your Connect your Switch to 2800 Fe 0/1

then

interface fa 0/1.100

encapsulation dot1q 100

ip address 10.0.0.1/24

ip nat inside

interface fa 0/1.10

encapsulation dot1q 100

ip address 10.0.10.1/25

ip nat inside

ip access -list extended NAT

permit ip 10.0.0.0 0.0.0.255 any

permit ip 10.0.10.0 0.0.0.255 nay

ip nat inside source-list NAT interface (Public Interface ) Fe 0/0 Overload

ip route 0.0.0.0 0.0.0.0 fe 0/0

*** Do Rate Helpful Posts***

Jawad