Hello
I'm having trouble with VLANs and can't pin point where the problem is.
Up until now, I've only been using the default VLAN1 on my wired network.
I have a 877W which used 2 vlans for WLAN, but everything else, all wired devices resided on VLAN1 connected to a SG200, plugged into the 877W.
The subnet of VLAN1 is 10.1.1.0/24.
The ip address of the switch (SG200 ) is 10.1.1.254
My plan is to turn off the 877W, in favour of using
- a 2611XM with an ADSL WIC for routing and internet access
- a WAP ( 1231G )
Therefore, the networking devices in my configuration are :
- 2611XM - which is supposed to be configured for router on a stick on FE0
- SG200 - switch which all ethernet connections go ( 2611XM, AP1251G, PCs etc )
- AP1231G - wireless access point
As part of this exercise ( learning ) , I wanted to stop using VLAN1, migrate the managemetn of devices to VLAN 100
along with adding additional VLANs later for isolated traffic ( iSCSI, VOIP etc ).
I decided to get the new management VLAN ( 100 ) created and working before moving away from VLAN1 ( and reconfiguring the switch management address ).
And it turns out I'm stuck at the first hurdle, can't get the router and wap to ping each other on VLAN100 subnet.
ROUTER :
interface FastEthernet0/0
no ip address
duplex auto
speed auto
!
interface FastEthernet0/0.1
description VLAN1 - Legacy Management
encapsulation dot1Q 1 native
ip address 10.1.1.1 255.255.255.0
no cdp enable
!
interface FastEthernet0/0.2
description VLAN2 - Wifi Advertised Network
encapsulation dot1Q 2
ip address 192.168.2.1 255.255.255.0
!
interface FastEthernet0/0.100
description VLAN100 - Management
encapsulation dot1Q 100
ip address 192.168.100.1 255.255.255.0
!
Wireless AP :
interface Dot11Radio0.2
description Woodville West Wifi - WPA2
encapsulation dot1Q 2 native
no ip route-cache
no cdp enable
!
interface FastEthernet0
no ip address
no ip route-cache
speed auto
full-duplex
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
!
interface FastEthernet0.2
description VLAN2 - Wifi Advertised Network
encapsulation dot1Q 2
no ip route-cache
!
interface FastEthernet0.100
description VLAN100 - Management
encapsulation dot1Q 100
no ip route-cache
!
interface BVI1
ip address 192.168.100.45 255.255.255.0
no ip route-cache
!
ip default-gateway 192.168.100.1
bridge 1 protocol ieee
bridge 1 route ip
!
SWITCH
Port 1 (Router) : Trunk mode, 1 Untaged, 2 & 100 Tagged
Port 2 (WAP) : Trunk mode, 1 Untaged, 2 & 100 Tagged
With this configuration nothing works, I get unroutable packets when trying to ping from Router to WAP or vice versa ( i.e. 192.168.100.1 to 192.168.100.45 .
If I change the switch config, such that VLAN100 is Untagged ( instead of VLAN1 ) on both Ports 1&2 and set encapsulation command on the sub ethernet interfaces for VLAN100 to have "native" then it works.
However, setting everything to "untagged" / "native" isn't using VLANS.
Can anybody please help me an obvious flaw in my design or understanding, or even identify if I'm using the switch in the wrong way
* Please note I really am just trying to sort out the VLANs / Router on a Stick issue here - any issues with the wireless config I'll look at after this.
Thanks kindly
Damian
Accepted Solutions
