07-10-2018 05:59 AM - edited 03-08-2019 03:37 PM
Hi All,
I am Chencha Rao, and I am a Network Engineer from Services oriented Company.
I connected and configured like the scenario is ISP(ACT) to Firewall(Cyberoam 35iNG) to switch(cisco SG350).
From ISP to Firewall Port B configuration is ok. because I am getting internet access for the firewall.
coming to switch, I created 3 VLANs named MGMT(1), DATA(9), VOICE(2). and I configured an uplink port as a trunk port with native VLAN 1 as untagged and allowed VLANs 2,9 as tagged. from pc to switch configuration also ok because I got access to the switch.
(config-if)# switchport mode trunk
(config-if)# switchport trunk native VLAN 1
(config-if)# switchport trunk allowed VLAN add 2,9
in Firewall LAN port, I created sub-interfaces like physical port (PORTA) and sub-interfaces (PORTA.2, PORTA.9) and assigned IP Address respective interfaces both Physical and Virtual Interfaces. attached please find it.
whenever I connected from switch uplink port to forewall PORTA belongs to LAN port, connectivity from the switch to firewall working only from MGMT VLAN and remaining two VLANs are not getting packets from the firewall to switch and vice versa.
anyone, please suggest me at where I did mistake switch getting internet only through VLAN 1 only not from 2,9 and whenever I connect firewall directly to my pc internet also getting and intervlan routing also working fine from both Firewall and as well as the switch.
I tried so many scenarios whatever possible but it wasn't working suggest any fault I done
thanks & Regards
Chencha Rao
07-10-2018 06:05 AM
Hi there,
With the switch connected to the firewall, what is the output of:
sh int trunk
sh spanning vlan 2
sh spanning vlan 9
...can you also provide us with the running config of the switch?
cheers,
Seb.
07-10-2018 06:12 AM
I configured GE 23-26 for uplink ports and i have comm only through VLAN 1 to firewall
i attached running config of SG350 switch
config-file-header
switch19118b
v2.2.7.7 / RTESLA2.2.5_810_215_010
CLI v1.0
file SSD indicator encrypted
@
ssd-control-start
ssd config
ssd file passphrase control unrestricted
no ssd file integrity control
ssd-control-end cb0a3fdb1f3a1af4e4430033719968c0
!
!
unit-type-control-start
unit-type unit 1 network gi uplink none
unit-type-control-end
!
vlan database
vlan 2,7,9
exit
voice vlan id 2
voice vlan state auto-enabled
voice vlan oui-table add 0001e3 Siemens_AG_phone________
voice vlan oui-table add 00036b Cisco_phone_____________
voice vlan oui-table add 00096e Avaya___________________
voice vlan oui-table add 000fe2 H3C_Aolynk______________
voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
voice vlan oui-table add 00d01e Pingtel_phone___________
voice vlan oui-table add 00e075 Polycom/Veritel_phone___
voice vlan oui-table add 00e0bb 3Com_phone______________
bonjour interface range vlan 1
hostname switch19118b
username admin password encrypted b5353912109dbcbb7d33e1fb974c596170bc3585 privilege 15
ip ssh server
clock timezone " " 5 minutes 30
clock source browser
ip telnet server
!
interface vlan 1
name mgmt
ip address 172.16.1.254 255.255.255.0
no ip address dhcp
!
interface vlan 2
name voice
ip address 172.16.2.254 255.255.255.0
!
interface vlan 7
name wifi
ip address 172.16.7.254 255.255.255.0
!
interface vlan 9
name data
ip address 172.16.9.254 255.255.255.0
!
interface GigabitEthernet1
storm-control broadcast level 10
storm-control multicast level 10
port security max 10
port security mode max-addresses
port security discard trap 60
spanning-tree portfast
spanning-tree bpduguard enable
switchport mode trunk
switchport trunk native vlan 9
macro description ip_phone
!next command is internal.
macro auto smartport dynamic_type ip_phone
!
interface GigabitEthernet2
switchport mode trunk
switchport trunk native vlan 9
no macro auto smartport
!
interface GigabitEthernet3
switchport mode trunk
switchport trunk native vlan 9
no macro auto smartport
!
interface GigabitEthernet4
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet5
storm-control broadcast level 10
storm-control multicast level 10
port security max 10
port security mode max-addresses
port security discard trap 60
spanning-tree portfast
spanning-tree bpduguard enable
switchport mode trunk
switchport trunk native vlan 9
macro description ip_phone
!next command is internal.
macro auto smartport dynamic_type ip_phone
!
interface GigabitEthernet6
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet7
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet8
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet9
switchport mode trunk
switchport trunk native vlan 9
no macro auto smartport
!
interface GigabitEthernet10
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet11
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet12
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet13
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet14
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet15
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet16
switchport mode trunk
switchport trunk native vlan 9
no macro auto smartport
!
interface GigabitEthernet17
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet18
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet19
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet20
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet21
switchport mode trunk
switchport trunk native vlan 9
!
interface GigabitEthernet22
storm-control broadcast level 10
storm-control multicast level 10
port security max 10
port security mode max-addresses
port security discard trap 60
spanning-tree portfast
spanning-tree bpduguard enable
switchport mode trunk
switchport trunk native vlan 9
macro description ip_phone_desktop
!next command is internal.
macro auto smartport dynamic_type ip_phone_desktop
!
interface GigabitEthernet23
switchport mode trunk
!
interface GigabitEthernet24
spanning-tree link-type point-to-point
switchport mode trunk
macro description switch
!next command is internal.
macro auto smartport dynamic_type switch
!
interface GigabitEthernet25
spanning-tree link-type point-to-point
switchport mode trunk
macro description "switch "
!next command is internal.
macro auto smartport dynamic_type switch
!
interface GigabitEthernet26
spanning-tree link-type point-to-point
switchport mode trunk
macro description "no_ip_phone | switch"
!next command is internal.
macro auto smartport dynamic_type switch
!
exit
ip default-gateway 172.16.1.1
ip default-gateway 172.16.2.1
ip default-gateway 172.16.9.1
encrypted ip ssh-client key rsa key-pair
---- BEGIN SSH2 ENCRYPTED PRIVATE KEY ----
Comment: RSA Private Key
bLmegvFoY4u3WVHIdGG8vMOy+3Bb/FnXrtyXOZ74e4BBPTMBrBrAGwPITfjVZeEArqe/b3
/gp0+M6zMSSf/UNYe1oKOXynbiythjtHx3+NN420ycAWYQA8+awCc2zLFSlevpYL91ZXrI
O9rRrBsIbv4ksUXU0g3WrgkP4jO2U/lFRBiu0QptH/0wbxZerWlg7lGkEHZhHQw5D1BfVq
Uq/NHBa2yw4JwKIWpGgi+qEM/Om+5+1wp3Wqy3+E+WmOXgoMJc+lo4bVCeN38ZUhOJpl3v
JVKl8Rvkfmy10LUn+cwr5J4kMTgpcytidpYGgvr2mtSHkXAZonHMsOKbKt1i85QN6Fisoy
YqY/jUwiPEyKamqLihjCJD8mhZ3dtHCvcv0DGvPLFZXZykRoeXDQxxXesgrAMUJrJFF0ft
BaSNMcxU5RUE7ShreU3CvcAlTf8MouYknPFfuaCp/ldQ07ZFS22EsbQzaiGTnfrnEJTS7q
+gHmc5T7zajbOjVQbJqkd0dF4exVuDxVbMOzSDj2ZryzU48gbRq2sUsllyjbX3DkFZYAaj
hCWJSMO+Y1Q8ROSMTqzx9DfHGMW+3AO+aQHrZ6TeqIMF+n/VkLu9P0DXMZ/aH1azYCM0xI
N8NdW/IxBgyJ90SzmeZzqyyO6MGuwRe5sjYr/1TEMKuD7WeeCrnhMU072Vnm+lkjmHhg6P
048Y6OMOJSOcg/xn1UyxpWtjaw6uR/ohbN78YD1oq+i3gVCvSKzNhgjO9a3DwzXdppYqxd
rvTHJ1HXBHfc76rWAo9o4QCl2VOe+rQXaGEkzwtz1ILauDNBQvchZch2PLn5agdakgQH3Q
5laI7TVJDxOwhtUhCu7W3mKI++WU1ZBssoJrpiws/YIqMaoRuZSw9jcEnax+ViuuCfl/Xj
zlkrvobbD+ahVyD/Kjx2CNuFd4+oMHtt90y5twLJdWGvY5JI3LsMJJTtWEX6DXewGZQmKn
JHcGWvpWattJ42aPPtjOlN7eL4dzBesBx7qbNCXuEFdqDIaNBstubLS795bRF41XtpbyR8
f/VLVp1xbztsV9L4U4t1UtXpVgZMfWcqETlBbzGM9qtxTeEVp2fLPvmvlw1w==
---- END SSH2 PRIVATE KEY ----
---- BEGIN SSH2 PUBLIC KEY ----
Comment: RSA Public Key
AAAAB3NzaC1yc2EAAAADAQABAAAAgQDTKl9xsvXeoOjdGP9oRu1+bxGNuxZpxXFoX+c4Ia
PCZGLGfzznegmdrgcHWW3k+lbu1b896DbhTnIkJdc0CO28g/n28xYicMHuQxYwSWYVIcAt
jBRPYkJ0BaxWeg7ph/WFvdRu9QOwXpORszdqL4W4Hbl2IVAJqqW4PZcNlRrdVw==
---- END SSH2 PUBLIC KEY ----
.
encrypted ip ssh-client key dsa key-pair
---- BEGIN SSH2 ENCRYPTED PRIVATE KEY ----
Comment: DSA Private Key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---- END SSH2 PRIVATE KEY ----
---- BEGIN SSH2 PUBLIC KEY ----
Comment: DSA Public Key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---- END SSH2 PUBLIC KEY ----
.
encrypted crypto key import rsa
---- BEGIN SSH2 ENCRYPTED PRIVATE KEY ----
Comment: RSA Private Key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==
---- END SSH2 PRIVATE KEY ----
---- BEGIN SSH2 PUBLIC KEY ----
Comment: RSA Public Key
AAAAB3NzaC1yc2EAAAADAQABAAAAgQC2sXH6q2BnxTRwOszbIzfq2xer8Um33ZvAuEv09I
WADRieGyXmyjE7gJ8hppGBpWPIyxzvf/+dIGzTthzCKi0l+gRAPpuNYHrS8N+4FG0Rms8Z
FyEVRs3uyJX/7t88TXbsWH4UarsTcLpPY/7SQ98zSvtEayCS1Cn/qqgA2nyxsQ==
---- END SSH2 PUBLIC KEY ----
.
encrypted crypto key import dsa
---- BEGIN SSH2 ENCRYPTED PRIVATE KEY ----
Comment: DSA Private Key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---- END SSH2 PRIVATE KEY ----
---- BEGIN SSH2 PUBLIC KEY ----
Comment: DSA Public Key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---- END SSH2 PUBLIC KEY ----
.
encrypted crypto certificate 1 import
-----BEGIN RSA ENCRYPTED PRIVATE KEY-----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==
-----END RSA PRIVATE KEY-----
-----BEGIN RSA PUBLIC KEY-----
MIGJAoGBAN6hd6ziPNdWRq2Pg/+2e7dFfuvytn7Hxg2E/yJlO1mrscl5Tf6OehvtctSvzL
PAW/lQeJPtS8kKLlLYvgwrqFJIW8Hg0lZ4eE/t/D7na18MQ01bnB/2r8ddfW3YNz+h0RsQ
UXt5sEboWOzzPh0f2gMmIRH3rz838bsYiwSK2HPZAgMBAAE=
-----END RSA PUBLIC KEY-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
.
encrypted crypto certificate 2 import
-----BEGIN RSA ENCRYPTED PRIVATE KEY-----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-----END RSA PRIVATE KEY-----
-----BEGIN RSA PUBLIC KEY-----
MIGJAoGBAMe6/GoyIejb7Q1sGv8YxPS15xfmQYXfMOm8YmC1Cl+YtGXS0m4rP0snayXVYJ
2exOBUmTQjiAifFcPT1D/uwXh+NVzEWdmfFVjAga0JxXZ33SjEMU4g48uXpwtjUtZ3GTm0
FVkKSdy8rT/cajhqxA2ZajwpL8iWv/F3RQyJTRgvAgMBAAE=
-----END RSA PUBLIC KEY-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
.
07-10-2018 10:22 PM
Hi Sub Rupik,
as of you requested previously I attached Show Running running config of switch please find it.
as I mentioned this switch is SG350 28 port, and it was not accepting this command like show spanning vlan <vlan id>.
07-11-2018 12:26 AM - edited 07-11-2018 12:27 AM
Hello again,
Which switchport is the firewall attached to? What is the output of the following:
show mac address-table
sh interfaces switchport <switchport_to_firewall>
cheers,
Seb.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: