Solved: Re: VLan on L2 Switches Cannot Get to Internet

pmac14 · ‎11-04-2025

I have a 9200L as a core switch, with 5 other switches attached by 10GigEthernet cables. I cannot seem to get to the internet for all but the primary VLan on any of the other 9200L switches. Please help.

Richard Burts · ‎11-12-2025

I believe that @pieterh has correctly identified the 2 most likely causes of the issue. It is certainly possible that there is a routing issue impacting the traffic from the vlans. But my guess is that the issue is that traffic from the problematic vlans is that their traffic is not being translated as they attempt to go to the Internet.

HTH

Rick

View solution in original post

Torbjørn · ‎11-04-2025

Hello @pmac14,

You will have to provide us with some more information:

What does your topology look like?
Can you show us the relevant device configurations?

Happy to help! Please mark as helpful/solution if applicable.
Get in touch: https://torbjorn.dev

pieterh · ‎11-05-2025

as @Torbjørn already mentioned, more information about the topology will help!

that said, a question: has it worked before?
if not, first check if the other vlans'are routed correctly and included in NAT and ACL rules on the router/firewall connecting to the internet, especially does this router know the route back to these vlan's

>>> VLan on L2 Switches <<<
if the switches really are L2 only then there is no routing between the vlan's and between vlan en interface connecting to the internet
-> you need to add routing configuration externally

Martin L · ‎11-05-2025

maybe for security reasons only primary VLan is allowed to go out on the Internet? what has changed recently ?

Regards, ML
**Have fun labbing!!!***
***Please Rate All Helpful Responses ***

MyNetworkingJourney · ‎11-06-2025

Hello pmcbride,

As some of the other user have mentioned more information would provide a better understanding of the issue. If only one switch is getting connected to the internet, and the others aren't, maybe they aren't trunked in their link back to the core switch? Or it could be a security issue as Martin L stated.

It seems we could only provide speculation with the current layout.

pmac14 · ‎11-07-2025

We are currently running three Vlans. Attached is drawing showing connection and ports connecting. All those ports should be trunked, correct?

MyNetworkingJourney · ‎11-07-2025

Correct, these ports should be Trunk ports. Trunk ports are used between switches to networking devices.

Switch to switch

Or

Switch to router

Without Trunks configured on the connected interfaces, there won't be any communication through those interfaces.

Richard Burts · ‎11-12-2025

I believe that @pieterh has correctly identified the 2 most likely causes of the issue. It is certainly possible that there is a routing issue impacting the traffic from the vlans. But my guess is that the issue is that traffic from the problematic vlans is that their traffic is not being translated as they attempt to go to the Internet.

HTH

Rick

Richard Burts · ‎11-15-2025

I am glad that our suggestions have been helpful. Thank you for marking the discussion as solved. This will help other members of the community to identify discussions that are helpful. This community is an excellent place to ask questions and to learn about networking. I hope to see you continue to be active in the community.

HTH

Rick

pieterh · ‎11-07-2025

and what subnets are used for vlan 70,71,72 ?
and evenso important, who does the routing between those vlans and de vlan with subnet 192.168.0.0/24 ? (core or sophos?)