Re: SG300-28 with ASA5505 - TRUNK and VLAN

denis · ‎01-18-2011

I have one ASA5505 with 3 vlans. I added a switch SG300-28 in my network.

I create the same vlan in the SG300.

When I connect a PC on the SG300 with its gateway pointing to the IP of the SG300:

I ping the SG300

I ping the ASA5505

but i can't surf on web

When I change its gateway with the IP of the ASA5505:

I ping the SG300

I ping the ASA5505

I can surf on web

I can't find if the problem come from the ASA or from the SG300.

I find some doc about config but just with IOS and the SG300 hadn't got one.

I search doc about this config : for the SG300 and for the ASA5505.

Thanks for your answer.

Denis

Nagaraja Thanthry · ‎01-18-2011

Hello,

SG300 seems to be a Layer 2 switch. If it is a Layer 2 switch, it will not be able to route traffic from other hosts towards the ASA. Since ASA seems to be the L3 device connecting to the internet, you need to configure ASA's IP as default gateway.

Hope this helps.

Regards,

NT

denis · ‎01-19-2011

I can configure the SG300 in the two modes.

I have put it in the layer 3 mode.

I'd like to have the SG300 as my gateway because i would like it to do the routing between my vlans.

oliver_b · ‎05-05-2017

Hey did you ever find a resolve?

I am having the same issue?

oni.somroy · ‎06-01-2011

Have you set the default route on the SG300 to point to the ASA's IP address?

It makes sense that you can ping both the ASA and the SG300 regardless of the default-gw of the PC since they're all on the same broadcast domain (no routing involved).

If the destination address for your packets happened to be an IP address outside that broadcast domain or a network directly connected to the SG300, then the SG wouldn't know where to send packets because those networks are not in its routing table. If you haven't done so already, configure a static default route in your SG300 which points to your ASA. Since your ASA can already get out to the internet, it already has a default route cfg'd so you don't need to worry about that.