04-25-2020 01:33 PM
Hello
I'm having a few issues with my network which I took a snippet and attached below. Basically I cannot get John to successfully complete a DHCP request. Furthermore, I am unable to ping from the console from my switch to my router and vice versa. I'm not sure what I'm overlooking as the necessary switch ports are up, DHCP looks like its setup correctly, etc. I set my default-gateway on the switch hoping that would help but appears nothing has changed. I was hoping someone may be able to identify any errors they see, without being too much of a bother. Below are Switch A and Router A's running-config Thank you very much.
Here is SwitchA running-config
SwitchA#show run
Building configuration...
Current configuration : 1429 bytes
!
version 12.2
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
hostname SwitchA
!
!
!
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
interface FastEthernet0/1
switchport access vlan 18
!
interface FastEthernet0/2
switchport access vlan 12
!
interface FastEthernet0/3
switchport access vlan 25
!
interface FastEthernet0/4
!
interface FastEthernet0/5
!
interface FastEthernet0/6
!
interface FastEthernet0/7
!
interface FastEthernet0/8
!
interface FastEthernet0/9
!
interface FastEthernet0/10
!
interface FastEthernet0/11
!
interface FastEthernet0/12
switchport access vlan 18
!
interface FastEthernet0/13
!
interface FastEthernet0/14
!
interface FastEthernet0/15
!
interface FastEthernet0/16
!
interface FastEthernet0/17
!
interface FastEthernet0/18
!
interface FastEthernet0/19
!
interface FastEthernet0/20
!
interface FastEthernet0/21
!
interface FastEthernet0/22
switchport access vlan 18
!
interface FastEthernet0/23
!
interface FastEthernet0/24
!
interface GigabitEthernet0/1
switchport trunk native vlan 968
switchport trunk allowed vlan 1,12,22-26
switchport mode trunk
!
interface GigabitEthernet0/2
!
interface Vlan1
no ip address
shutdown
!
interface Vlan968
mac-address 0003.e4c3.6e01
ip address 10.5.0.17 255.255.0.0
!
ip default-gateway 10.38.72.1
!
!
!
!
line con 0
!
line vty 0 4
login
line vty 5 15
login
!
!
!
!
end
Router A running-config
RouterA#show run
Building configuration...
Current configuration : 1373 bytes
!
version 15.1
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
hostname RouterA
!
!
!
!
ip dhcp excluded-address 10.38.72.1
ip dhcp excluded-address 10.38.72.5
!
ip dhcp pool Accounting
network 10.38.72.0 255.255.252.0
default-router 10.38.72.1
!
!
!
no ip cef
no ipv6 cef
!
!
!
!
license udi pid CISCO1941/K9 sn FTX15244AAD-
!
!
!
!
!
!
!
!
!
!
!
spanning-tree mode pvst
!
!
!
!
!
!
interface GigabitEthernet0/0
ip address 10.38.72.5 255.255.252.0
duplex auto
speed auto
!
interface GigabitEthernet0/0.18
encapsulation dot1Q 18
no ip address
ip access-group 159 out
!
interface GigabitEthernet0/0.968
encapsulation dot1Q 968
no ip address
!
interface GigabitEthernet0/1
no ip address
duplex auto
speed auto
shutdown
!
interface Serial0/0/0
ip address 192.168.38.177 255.255.255.252
encapsulation ppp
!
interface Serial0/0/1
no ip address
clock rate 2000000
shutdown
!
interface Serial0/1/0
no ip address
clock rate 2000000
shutdown
!
interface Serial0/1/1
no ip address
clock rate 2000000
shutdown
!
interface Vlan1
no ip address
shutdown
!
ip classless
ip route 172.19.84.144 255.255.255.240 172.19.84.145
!
ip flow-export version 9
!
!
access-list 159 permit ip 172.19.84.144 0.0.0.15 10.38.72.0 0.0.3.255
!
!
!
!
!
!
line con 0
!
line aux 0
!
line vty 0 4
login
!
!
!
end
04-25-2020 02:06 PM - edited 04-25-2020 05:13 PM
You can attach PT file here; will be easier to fix issues. I see several isseus :
interface Vlan968 with ip address 10.5.0.17 255.255.0.0 is not on the same network as router. i do not see network 10.5.x.x on router anywhere.
2. see if interface vlan 968 is up up. if not, then add vlan 968 into database.
3. ACL may not be issue but probably will be down the road. All ACLs have implicit deny at the end of ACL list -even if u do not see it, it is there;
Regards, ML
**Please Rate All Helpful Responses **
04-25-2020 03:18 PM - edited 04-25-2020 03:22 PM
Hello. Thank you for your response. I added the ip address to this Vlan968 and exluded it from the DHCP pool on the router to avoid any conflicts. I am still unable to ping from from any Switch to router or even ping from Accounting server to switch A.
I added the last line to my config of Vlan968.
interface Vlan968
mac-address 0003.e4c3.6e01
ip address 10.38.72.5 255.255.252.0
I do notice that GigabitEthernet 0/1 the connection between the switch and the router when I mouse over the switch it shows no VLAN associated with it or IP address. Yes I agree about the ACL potentially being an issue down the road. The assignment is basically john needs to be able to get to the web server on the other side of the network but I wanted to approach it from the left side and then move towards the right.
I also attached the my PKT file as you suggested. It wouldn't let me attach as .pkt so I made it a .zip.
04-25-2020 05:09 PM - edited 04-25-2020 05:13 PM
I move IPs of g0/0 of router to GigabitEthernet0/0.968, that is IT dept. Added 2 sub-interfaces for vla n 25 (PC) and vla 18 (Pritner).
moved vlan on switch around so pings are ok.
all IPs are static. but if u add new PC into switch port into vlan 968, it should get IP from DHCP server.
this lab needs some more adjustments -see attached file
Regards, ML
**Please Rate All Helpful Responses **
04-25-2020 07:58 PM
Hello Martin
I looked over your changes and they have made this easier to digest for sure. Changing the switchport access to 968 instead of their default values made the difference for me. I can now ping out of my switch to the default router and I can also ping from John to the switch/router. Thank you so much for taking your time to help out!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide