Solved

vlan routing

Posted on 2008-06-10
6
1,183 Views
Last Modified: 2010-04-21
I have a 4006, with multi vlans...all working.  However when I added a new vlan  the traffic on the new vlan only permits 1 device to get to the outside world and be seen by other devices on the other vlans.  PCs on the new vlan can see each other and ping.  Trace routes from the one working device have 1 hop to the
vlan gateway then distination.  Trace routes from any other device on the new vlan time out, with no 1st hop.
any help GREATLY appreciated, thanks in advance....
MY-4006#show ip int vlan XX1(good vlan)
VlanXX1 is up, line protocol is up
  Internet address is 192.168.6.254/24
  Broadcast address is 255.255.255.255
  Address determined by non-volatile memory
  MTU is 1500 bytes
  Helper address is 192.168.1.10
  Directed broadcast forwarding is disabled
  Outgoing access list is not set
  Inbound  access list is not set
  Proxy ARP is enabled
  Local Proxy ARP is disabled
  Security level is default
  Split horizon is enabled
  ICMP redirects are never sent
  ICMP unreachables are always sent
  ICMP mask replies are never sent
  IP fast switching is enabled
  IP fast switching on the same interface is disabled
  IP Flow switching is disabled
  IP CEF switching is enabled
  IP Null turbo vector
  IP multicast fast switching is enabled
  IP multicast distributed fast switching is disabled
  IP route-cache flags are Fast, CEF
  Router Discovery is disabled
  IP output packet accounting is disabled
  IP access violation accounting is disabled
  TCP/IP header compression is disabled
  RTP/IP header compression is disabled
  Probe proxy name replies are disabled
  Policy routing is disabled
  Network address translation is disabled
  WCCP Redirect outbound is disabled
  WCCP Redirect exclude is disabled
  BGP Policy Mapping is disabled
NEW VLAN(BAD)
MY-4006#show ip int vlan XX2
VlanXX2 is up, line protocol is up
  Internet address is 172.19.30.254/24
  Broadcast address is 255.255.255.255
  Address determined by setup command
  MTU is 1500 bytes
  Helper address is 192.168.1.10
  Directed broadcast forwarding is disabled
  Outgoing access list is not set
  Inbound  access list is not set
  Proxy ARP is enabled
  Local Proxy ARP is disabled
  Security level is default
  Split horizon is enabled
  ICMP redirects are never sent
  ICMP unreachables are always sent
  ICMP mask replies are never sent
  IP fast switching is enabled
  IP fast switching on the same interface is disabled
  IP Flow switching is disabled
  IP CEF switching is enabled
  IP Null turbo vector
  IP multicast fast switching is enabled
  IP multicast distributed fast switching is disabled
  IP route-cache flags are Fast, CEF
  Router Discovery is disabled
  IP output packet accounting is disabled
  IP access violation accounting is disabled
  TCP/IP header compression is disabled
  RTP/IP header compression is disabled
  Probe proxy name replies are disabled
  Policy routing is disabled
  Network address translation is disabled
  WCCP Redirect outbound is disabled
  WCCP Redirect exclude is disabled
  BGP Policy Mapping is disabled

Open in new window

0
Comment
Question by:TriCountyIT
  • 3
  • 2
6 Comments
 
LVL 43

Expert Comment

by:JFrederick29
ID: 21752763
Do the non-working PC's have the proper default gateway set if you do an ipconfig?  Their default gateway should be 172.19.30.254.
0
 

Author Comment

by:TriCountyIT
ID: 21752883
The non-working PC's are all set to 172.19.30.254.  I set a range from our DHCP server to hand out all the proper info gateway...etc.  Which is surprising being that the DHCP server is on a different subnet other than the 172.19.30.0/24 and pings time out to that address from the PC's....weird?
0
 
LVL 3

Expert Comment

by:Slawomir Malinowski
ID: 21752958
172.19.30.254 its your default gateway.
You need to setup dhcp relay agent on the vlanxx2
ip helper-address x.x.x.x your dhcp ip address
0
Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

 
LVL 43

Accepted Solution

by:
JFrederick29 earned 500 total points
ID: 21753030
Very strange, so obviously traffic is flowing if you are getting DHCP from the server on a different subnet.  Is the issue specific to ICMP?  Can you ping the gateway even?  Can you access a web server?  Could the Windows Firewall be blocking ICMP....
0
 

Author Comment

by:TriCountyIT
ID: 21859339
Well turns out it was a VPN client issue?!?!  Thanks for the input!  Disabled the VPN client and everything was fine.
0
 

Author Closing Comment

by:TriCountyIT
ID: 31465803
Thanks on the right track, is was the VPN client causing the headaches!
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
URL to download Engenius BH-ENS202 firmware update 4 41
What problem can Native VLAN mismatch causes 4 62
VLAN Question! 9 68
Unidentified Network 12 56
Hi there, This article summarizes what you need if you are going to set up your home or small business Network Attached Storage (NAS) to be accessible from the internet. Of course there are configuration differences based on your NAS or router ma…
Arrow Electronics was searching for a KVM  (Keyboard/Video/Mouse) switch that could display on one single monitor the current status of all units being tested on the rack.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question