Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
517
Views
0
Helpful
3
Replies

Router on a stick issues

mitchell1184
Level 1
Level 1

‎05-12-2013 06:40 AM - edited ‎03-07-2019 01:19 PM

Hi guys and gals

i am currently studying for my CCNA and an practising with a cisco 1801 router i bought from ebay. I have set it up to the best of my knoledge but for some reason my vlans cannot talk to each other and i dont understand why.

I have the following setup;

cisco 1801 router

linksys srw2008mp switch

belkin router (set up as my wireless access point)

I am trying to put all the wireless devices on their own vlan so they can have their own DHCP pool and i can statically assign all the wired devices without worrying that the dhcp service will assign a static ip address out when one of the wired devices are switched off.

To do this i have set the port on the switch that connects to the router to a trunking port (tagged) and all others are untagged and are access ports. The wireless access point is powered by PoE and is in the loft and the port on the switch which this attaches to is the only port assigned to the other VLAN

currently i have three Vlans

1 native

10 wired

20 wireless

Both Vlans have internet access and i can ping the other vlans gateway from either vlan but no devices.

my config is as follows

Building configuration...

Current configuration : 2991 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
no logging buffered
enable secret 5 $1$220Q$sl47T9SaQBtgtgRXmiPDW/
!
no aaa new-model
memory-size iomem 25
!
!
!
!
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.2.1 192.168.2.2
ip dhcp excluded-address 192.168.2.26 192.168.2.30
!
ip dhcp pool home
   network 192.168.2.0 255.255.255.224
   dns-server 8.8.8.8
   default-router 192.168.2.1 255.255.255.224
   lease 7
!
ip dhcp pool wifi
   network 192.168.2.32 255.255.255.224
   dns-server 8.8.8.8
   default-router 192.168.2.33 255.255.255.224
   lease 7
!
!
ip cef
ip name-server 8.8.8.8
no ipv6 cef
!
multilink bundle-name authenticated
!
!
username admin privilege 15 password 7

archive
log config
  hidekeys
!
!
!
!
!
interface FastEthernet0
no ip address
speed auto
full-duplex
!
interface FastEthernet0.10
description $FW_INSIDE$
encapsulation dot1Q 10
ip address 192.168.2.1 255.255.255.224
ip nat inside
ip virtual-reassembly
!
interface FastEthernet0.20
description $FW_INSIDE$
encapsulation dot1Q 20
ip address 192.168.2.33 255.255.255.224
ip nat inside
ip virtual-reassembly
!
interface BRI0
no ip address
encapsulation hdlc
shutdown
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
!
interface FastEthernet5
!
interface FastEthernet6
!
interface FastEthernet7
!
interface FastEthernet8
!
interface ATM0
no ip address
no atm ilmi-keepalive
dsl operating-mode auto
!
interface ATM0.1 point-to-point
pvc 0/38
  encapsulation aal5mux ppp dialer
  dialer pool-member 1
!
!
interface Vlan1
description $FW_INSIDE$
ip address 192.168.1.1 255.255.255.0
!
interface Dialer0
description $FW_OUTSIDE$
ip address negotiated
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication chap callin
ppp chap hostname
ppp chap password
!
router eigrp 1
network 192.168.2.0 0.0.0.31
network 192.168.2.32 0.0.0.31
auto-summary
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 Dialer0
!
!
ip http server
no ip http secure-server
ip dns server
ip nat inside source list 1 interface Dialer0 overload
!
access-list 1 permit 192.168.0.0 0.0.255.255
!
!
!
!
!
!
control-plane
!
banner motd ^CC
*************************************************************
                Unauthorized logins denied
*************************************************************
^C
alias exec s show ip interface brief
!
line con 0
exec-timeout 800 0
password 7

logging synchronous
login local
line aux 0
password 7

logging synchronous
login local
line vty 0 4
exec-timeout 0 0
privilege level 15
password 7

logging synchronous
login local
transport input telnet ssh
!

!
webvpn cef
end

I am very sorry if i havent put enough info and please be patient with me as i am yet to fully understand certain concepts.

Any help will be much appreciated

Any ideas

Cheers

Lee

Labels:
0 Helpful
3 Replies 3

Sebastian Helmer
Level 5
Level 5

‎05-12-2013 08:06 AM

I think we should focus on the switch connection. Are u using Vlans there too. I think so, right? Is the trunk up and working? "Sh int trunk" all Vlans allowed and not shutdown or pruned?


Sent from Cisco Technical Support iPhone App

0 Helpful

mitchell1184
Level 1
Level 1
In response to Sebastian Helmer

‎05-12-2013 08:59 AM

hi and thanks for the quick reply

I have had to abandon this project for the time being because this is a live network i use at home for my family and for some reason i couldnt get the firewall working with this new config either, so i have swapped the 1801 for the isp provided router.

i use the SDM for the firewall as im not to up on this yet.

anyway the switch was configured as follows

three vlans

1 native

10 wired

20 wireless

port 5 was configured as a trunk port with tagging

port 8 (the port the WAP was connected to) was configure in vlan 20, without tagging

the rest of the ports were Vlan 10, without tagging

there was no pruning enabled but i never thought to try show interface trunk, i thought this was cisco only and thought that a router wouldnt support this as you cant configure trunk connections on a router??

the switch, although a subsidury of cisco doesnt have ios so its a grey area for me, hoewever semed ok because the Vlans worked independantly.

i have my exam on the 21st so this will be an on going project for the for coming week, many thanks for any advice given and your time.

i am planning on re configuring the router from scratch because i tried so many different configs i hosed the startup config, im such a duffus, but its all a great learning curve. Things like the adsl connection and firewall im relying on the SDM to configure for me at the moment.

Cheers

Lee

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to mitchell1184

‎05-12-2013 10:49 AM

Lee

I agree with Sebastian in thinking that it may more likely be an issue with the switch than the router. The config that you posted looks reasonable. I do have a couple of comments/suggestions but I do not believe that any of them are the real fundamental problem.

I wonder about running EIGRP with network statements that match the subnets for vlan 10 and 20. Is there some device connected in those subnets that will be running EIGRP? Running EIGRP there does no harm that I know of but it also does no good to run EIGRP is there are no neighbors which which to advertise routes.

You tell us that the external switch has vlans 1, 10, and 20. The 1801 is configured to communicate with vlans 10 and 20 but as configured it will ignore vlan 1. There is a vlan 1 configured but it is for the ports on the 1801 and will not communicate with the switch.

In your original post you tell us that Both Vlans have Internet access. Can you tell us a bit more about how you tested or demonstrated that both vlans do have Internet access? That might shed some light on why the vlans do not communicate with each other.

I would also like to understand better your statement that you can ping the other vlans gateway from either vlan. Is this saying that you have a device connected in vlan 10 and it can ping the gateway for vlan 20 but not devices in vlan 20? And that devices connected in vlan 20 can ping the gateway for vlan 10 but not devices in vlan 10?

Best wishes as you complete your studies for the CCNA.

HTH

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card