?
Solved

Multiple VLANs sharing one Internet Connection

Posted on 2007-10-11
3
Medium Priority
?
3,266 Views
Last Modified: 2008-01-09
I have a Dell PowerConnect 6248 and would like to set up 3 different VLANs that can talk to eachother as well as share a SonicWall Pro 1260 Firewall.

I want set up the 3 different VLANS like this

VLAN1 192.168.1.0/24 - has department 1 computers using 10 ports
VLAN2 192.168.2.0/24 - has department 2 computers using 15 ports
VLAN3 192.168.3.0/24 - has department 3 computers using 5 ports

VLAN1 interface is 192.168.1.1
VLAN2 interface is 192.168.2.1
VLAN3 interface is 192.168.3.1

I would like VLAN 1 and VLAN2 to communicate with each other while neither communicating with  VLAN3

All 3 VLANS should be able to get to the internet using the Sonicwall. Is this possible?



0
Comment
Question by:jcourtney
  • 2
3 Comments
 
LVL 5

Accepted Solution

by:
richy92 earned 2000 total points
ID: 20064325
This shoul be easy enough - it seems to be a lyer 3 device so you can just turn on ip routing and assign each vlan an ip address - then they should route between them
put the sonic wall on one of the vlans and set the DFG on the switch to be the sonicwall - that should allow all vlans to talk to each other and all vlans to send traffic out via the sonicwall
to stop vlan 3 talking to vlans 1&2 you will need some sort of access control list to stop 192.168.1.0/24 and 192.168.2.0/24 talking to 192.168.3.0/24 and an opposite list to stop 1&2 talking to 3
I have done setups like this a few times - but only ever on Cisco kit - I cant believe its much different on the dell stuff though - proabably just different commands
0
 

Author Comment

by:jcourtney
ID: 20065964
I think im close. I set up the vlans and they do communicate with eachother. I have not set up acls to prevent vlan3 communication yet. The only problem know is that the internet doesnt seem to work. The sonic wall is doing nat translation. is there something i need to configure there?
0
 
LVL 5

Expert Comment

by:richy92
ID: 20066898
you need to setup the switch with a default gateway so that it sends all traffic to the sonicwall for routing out to the net
enter
ip route 0.0.0.0 0.0.0.0 x.x.x.x - where x.x.x.x is the sonicwall ip
all client PC's should use the switch IP as there defualt gateway - the switch will then forward the traffic on out to the net - the sonicwalll should be setup to do hide nat (all internal behind one external) then if u set it up right it should work
if not can you do an ipconfig from a client and provide some addresses from the sonicwall and switch ?
0

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
Unable to change the program that handles the scan event from a network attached Canon/Brother printer/scanner. This means you'll always have to choose which program handles this action, e.g. ControlCenter4 (in the case of a Brother).
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question