Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1677
Views
0
Helpful
6
Replies

Routing between 2 vlans

alkabeer80
Level 1
Level 1

‎02-07-2010 01:37 AM - edited ‎03-06-2019 09:36 AM

Hi,

I have problem with cisco 3560 switch i set up the network for 2 vlans 100 & 200 and i have direct internet cable to G0/3, now i need the people in vlan 100 and 200 to access the internet.

i have configured g0/3 with the following;

no switchport

ip add 192.168.12.12

and i can ping 192.168.12.2 and the internet as well

now pcs in vlan 100 and vlan 200 can't ping 192.168.12.2 nor the internet, they can only reach 192.168.12.12

i was expecting to implment NAT but it is not supported in Cisco 3560 switches

Is there any way to make pcs in vlan 100 and 200 access internet with out router.

thanks

Labels:
Preview file
18 KB
0 Helpful
6 Replies 6

Jon Marshall
Hall of Fame
Hall of Fame

‎02-07-2010 02:18 AM 

alkabeer80 wrote:
Hi,
I have problem with cisco 3560 switch i set up the network for 2 vlans 100 & 200 and i have direct internet cable to G0/3, now i need the people in vlan 100 and 200 to access the internet.
i have configured g0/3 with the following;
no switchport
ip add 192.168.12.12
and i can ping 192.168.12.2 and the internet as well
now pcs in vlan 100 and vlan 200 can't ping 192.168.12.2 nor the internet, they can only reach 192.168.12.12
i was expecting to implment NAT but it is not supported in Cisco 3560 switches
Is there any way to make pcs in vlan 100 and 200 access internet with out router.
thanks

The 3560 does not support NAT but that is not your problem.

You say from the switch you can ping 192.168.12.2 and the internet. 192.168.12.x is not routable on the internet so NAT must be happening on another device further upstream.

If you can ping 192.168.12.2 from the switch but not from clients on vlans 100 & 200 then there could be 2 issues -

1) do you have a default route on your 3560 ie.

   ip route 0.0.0.0 0.0.0.0 192.168.12.2

2) the 192.168.12.2 device will need to have routes for vlans 100 & 200 pointing back to 192.168.12.12

Jon

0 Helpful

alkabeer80
Level 1
Level 1
In response to Jon Marshall

‎02-07-2010 06:59 AM

Hi jon,

thanks for rapid reply i did not expect u so fast

yes i have nat controlled from ISP since this is ADSL line.

and i have configured default route on the L3 switch.

how i should do this:

the 192.168.12.2 device will need to have routes for vlans 100 & 200 pointing back to 192.168.12.12

My ISP will not accept to do anything in his premiss, can i do anything else.

Thanks.

0 Helpful

Ganesh Hariharan
VIP Alumni
VIP Alumni
In response to alkabeer80

‎02-07-2010 07:27 AM 

Hi jon,
thanks for rapid reply i did not expect u so fast 
yes i have nat controlled from ISP since this is ADSL line.
and i have configured default route on the L3 switch.
how i should do this:
the 192.168.12.2 device will need to have routes for vlans 100 & 200 pointing back to 192.168.12.12
My ISP will not accept to do anything in his premiss, can i do anything else.
Thanks.

Hi,

If your ISP cannot drop a reverse route towards your L3 then ask your ISP to enable pat.

HTH

Ganesh.H

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to Ganesh Hariharan

‎02-07-2010 11:19 AM 

ganeshh.iyer wrote:
Hi jon,
thanks for rapid reply i did not expect u so fast 
yes i have nat controlled from ISP since this is ADSL line.
and i have configured default route on the L3 switch.
how i should do this:
the 192.168.12.2 device will need to have routes for vlans 100 & 200 pointing back to 192.168.12.12
My ISP will not accept to do anything in his premiss, can i do anything else.
Thanks.
Hi,
If your ISP cannot drop a reverse route towards your L3 then ask your ISP to enable pat.
HTH
Ganesh.H

Ganesh

Not sure how this will help. Even if they enable PAT they will still need to add routes for the vlans on the 3560.

Alakabeer

If your ISP will not add any routes then unfortunately yes you would need a device that can do NAT, assuming your 3560 is directly connected into the ISP device.  Perhaps if you explained to the ISP then they might add the routes.

Jon

0 Helpful

alkabeer80
Level 1
Level 1
In response to Ganesh Hariharan

‎02-07-2010 11:46 PM

Hi Ganesh,

Thanks for your reply, i guess the ISP will not accept to do NAT or PAT, i have already asked them and answer is NO.

0 Helpful

Ganesh Hariharan
VIP Alumni
VIP Alumni

‎02-07-2010 04:16 AM 

Hi,
I
have problem with cisco 3560 switch i set up the network for 2 vlans
100 & 200 and i have direct internet cable to G0/3, now i need the
people in vlan 100 and 200 to access the internet.
i have configured g0/3 with the following;
no switchport
ip add 192.168.12.12
and i can ping 192.168.12.2 and the internet as well
now pcs in vlan 100 and vlan 200 can't ping 192.168.12.2 nor the internet, they can only reach 192.168.12.12
i was expecting to implment NAT but it is not supported in Cisco 3560 switches
Is there any way to make pcs in vlan 100 and 200 access internet with out router.
thanks

Hi,

Jon is right cisco 3560 does not support nat functionality except 6500 series switches and if you are able to ping from switch then natting is done some where in upstream  router or modem from where yu are getting the link just ask them to drop a reverse toute for your vlan subnet and point a default route towards the upstream router or modem in 3560 switch.

Hope to help

Ganesh.H

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card