Cisco 2500 Switch and Win 2k3 DHCP server on two VLANs

Posted on 2009-04-27
Medium Priority
Last Modified: 2012-05-06

I'm sitting with a educational project here, where I am required to make two VLANs with one DHCP server.

The two VLANs isn't supposed to be able to see each other, except for the Windows 2003 DHCP server and the Active Directory. This server is supposed to give IP addresses out to both VLANs. Also both VLANs should be able to go on the internet through the WAN port on the Cisco SOHO 91 router.

I have been looking on subnetting, but I'm unsure how to do it. Also IP Helper appears to to still not give access to the internet, and Router on a stick gives full access to the other VLAN.

I hope this is understandable, otherwise feel free to fire off any comments.

The current hardware I have is:
2x Cisco 2500 Switches
2x Cisco SOHO 91
1x Win 2k3 DHCP/AD server

Edit: Oh, appears that the site didn't update my question and put it under DHCP as primary. Sorry.
Question by:Qeales
  • 2
  • 2

Accepted Solution

egyptco earned 1500 total points
ID: 24240388
you need only one swith on which you configure your 2 VLANs and one router to do the inter VLAN routing (router on a stick, explore this example http://www.cisco.com/en/US/tech/tk389/tk815/technologies_configuration_example09186a00800949fd.shtml)

than you need to apply your security policies on the router to permit only traffic destined to your AD server to be permitted between the two VLANs (using ACL).

in order clients from other subnet to reach your DHCP server configure DHCP helper on the router interface (http://www.cisco.com/en/US/docs/ios/12_1t/12_1t2/feature/guide/dt_dhcpu.html).

Author Comment

ID: 24240417
Hello egyptco!

Thanks alot for the replies.

I've looked at my topology and I've come to realize I actually need 3 VLANs. There is only  2 LAN interfaces on the router. Can I somehow pair the two routers?

Expert Comment

ID: 24240552
you need only one interface to route between all VLANs configured on the switch. thats why is called router on a stick;) you configure the port connected to the switch as trunk. you didn't check the above given example, did you:)

but yes you can pair your two routers if you'd like. it depends what kind of topology you'd need e.g. you should use all your devices to achive more complicated routing lab. but for purposes of interconnecting 3 VLANs you need basicaly one router and one switch (or only switch with routing capabilities). acctually after i've checked 2500 are not switches but routers!

Author Comment

ID: 24249687
Hello egyptco!

Yes, I have mean 3500 switches all along, but I take that is the same.

After reading through the links you provided, it looks like everything is there! Thanks alot!

Consider the question solved ;)

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question