Solved

Inter-VLAN routing

Posted on 2009-04-02
5
412 Views
Last Modified: 2012-05-06
I've been having lots of fun with a little project -until now.. it's in production, and not working quite right.

We just implemented VLANs.  We did it using 2 Cisco Catalyst 3560 core switches, and 5 Catalyst 2960 edge switches.

The core switches use HSRP to present a single router (as they are layer 3 switches with ip routing enabled).

I have a number of VLANs, the default (1) resides on the 192.168.10.0/24 subnet.  It contains my firewall, switching, and routers.  All other VLANs reside on 10.<vlan>.0.0/16 subnets.

The default VLAN works, however none of the other VLANs are able to reach outside of the network (through the firewall).  All VLANs are routing across switches (ie 2 computers on different edge switches can talk), and all VLANs can talk to the servers, after the servers have been given static routes (ie route add 10.17.0.0 255.255.0.0 192.168.10.254 1)

Attached are the config files for one of the cores, and one of the edge switches.
sw-core-1-confg.txt
sw-b-confg.txt
0
Comment
Question by:lunanat
  • 3
  • 2
5 Comments
 
LVL 43

Accepted Solution

by:
JFrederick29 earned 500 total points
ID: 24053026
The Firewall has routes to all the 10.x subnets via 192.168.10.254, right?
0
 
LVL 43

Expert Comment

by:JFrederick29
ID: 24053032
On the servers, why not simply set the default gateway to 192.168.10.254? instead of adding static routes to all the 10.x subnets.
0
 
LVL 1

Author Comment

by:lunanat
ID: 24053140
Hi JFredrick, I'm back again hahahah.

I had tried that and it didn't seem to work... will try again.

And you are bang on... I was missing a route from the firewall back to the VLANs..........

doh?

Thank you once again.
0
 
LVL 1

Author Closing Comment

by:lunanat
ID: 31565927
Silly question, but I'm glad you had the answer!
0
 
LVL 43

Expert Comment

by:JFrederick29
ID: 24053169
No problem, glad to help!
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
checking for updates 11 59
Resource cost of NAT vs routing 3 65
2 routers, one cable modem 10 86
Cisco Switch Port Security 2 37
Microservice architecture adoption brings many advantages, but can add intricacy. Selecting the right orchestration tool is most important for business specific needs.
Shadow IT is coming out of the shadows as more businesses are choosing cloud-based applications. It is now a multi-cloud world for most organizations. Simultaneously, most businesses have yet to consolidate with one cloud provider or define an offic…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now