vpn not routing to other vlans

Joli Martinez · ‎05-22-2017

Hello,

I have a 3560 switch that does my L3 routing. This works fine on clients connected to LAN. I created a VPN server on the 10.21.40.0/24 network. I am able to ping all of the 10.21.40.0 network and even get out to the internet. But when I trying to access any of the other vlan's I get routed out to the default router instead of routing the traffic locally within the same switch.

interface Vlan10

description Voice
ip address 10.21.10.253 255.255.255.0
!
interface Vlan20
ip address 10.21.20.254 255.255.255.0
!
interface Vlan30
ip address 10.21.30.254 255.255.255.0
!
interface Vlan40
ip address 10.21.40.254 255.255.255.0
!
ip http server
ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 10.21.10.254

---------------------------------------------------

$ traceroute 10.21.30.3

traceroute to 10.21.30.3 (10.21.30.3), 64 hops max, 52 byte packets

1 10.21.40.3 (10.21.40.3) 22.973 ms 23.008 ms 22.405 ms (VPN SERVER)

2 10.21.40.254 (10.21.40.254) 25.749 ms 27.149 ms 22.888 ms

3 * * *

4 * * *

5 * * *

6 * * *

7 * * *

8 * * *

Glenn Martin · ‎05-22-2017

This belongs in the Netowrk Infrastructure > Switching forum.

Jon Marshall · ‎05-22-2017

That traceroute does not show it getting routed to the default router, it just shows it being routed on the switch.

The issue is that 10.21.30.3 is not responding.

What are the source IPs for the VPN clients and what is 10.21.30.3 and does it have a firewall enabled ie. can you ping that device from another internal device ?

Jon