<div>
Thanks I will give that a shot this afternoon.<br />
<br />
Jim
</div>


Thanks I will give that a shot this afternoon.

Jim

<div>
ikalmar,<br />
<br />
Had to make some changes to your solution, but it works fine! Thank you!<br />
<br />
Jim
</div>


ikalmar,

Had to make some changes to your solution, but it works fine! Thank you!

Jim

<div>
Just a couple of changes to the subnets. The theory was complete and it makes perfect sense.
</div>


Just a couple of changes to the subnets. The theory was complete and it makes perfect sense.

<div>
<div class="content wysiwyg-content">
Good Morning,<br />
<br />
I was tasked with setting up a QA lab with two vlans.VLAN 190: 10.201.1.0/24 and 10.201.2.0/24. There is a Domain Controller in each vlan (Please see attached Visio diagram). Each VLAN has its' own dedicated switch that connects to a port on the Cisco 3560G, each configured with a gateway address for each subnet. The 3560G also serves as the default gateway, forwarding requests to the ASA. Here is the problem. Neither VLAN can hit the internet.<br />
<br />
Attached, find:<br />
- A Visio diagram of the basic connectivity<br />
- Core Switch Config<br />
- ASA Firewall Config<br />
<br />
Thanks in advance for your assistance.<br />
<br />
Jim<br />
<a href="https://filedb.experts-exchange.com/incoming/2010/01_w06/229229/Qalab.vsd" target="_blank" class="file-inline" title="Visio Diagran (1015 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>Qalab.vsd</a><br />
<a href="https://filedb.experts-exchange.com/incoming/2010/01_w06/229233/ASA-Config.txt" target="_blank" class="file-inline" title="Edited Firewall Config (23 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>ASA-Config.txt</a><br />
<a href="https://filedb.experts-exchange.com/incoming/2010/01_w06/229234/Switch01-Config.txt" target="_blank" class="file-inline" title="Edited Switch Config (5 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>Switch01-Config.txt</a>
</div>
</div>


Qalab.vsd

Switch01-Config.txt

ASA-Config.txt

Good Morning,

I was tasked with setting up a QA lab with two vlans.VLAN 190: 10.201.1.0/24 and 10.201.2.0/24. There is a Domain Controller in each vlan (Please see attached Visio diagram). Each VLAN has its' own dedicated switch that connects to a port on the Cisco 3560G, each configured with a gateway address for each subnet. The 3560G also serves as the default gateway, forwarding requests to the ASA. Here is the problem. Neither VLAN can hit the internet.

Attached, find:
- A Visio diagram of the basic connectivity
- Core Switch Config
- ASA Firewall Config

Thanks in advance for your assistance.

Jim

Problem Routing to VLANS to get Internet Access

A switch is a device that filters and forwards packets of data between LAN segments. Switches operate at the data link layer or the network layer of the Open Systems Interconnection (OSI) Reference Model and therefore support any packet protocol. LANs that use switches to join segments are called switched LANs or, in the case of Ethernet networks, switched Ethernet LANs. A hub is a connection point for devices in a network. Hubs are commonly used to connect segments of a LAN. A hub contains multiple ports; when a packet arrives at one port, it is copied to the other ports so that all segments of the LAN can see all packets.

Switches / Hubs

Networking hardware includes the physical devices facilitating the use of a computer network. Typically, networking hardware includes gateways, routers, network bridges, modems, wireless access points, networking cables, line drivers, switches, hubs, and repeaters. But it also includes hybrid network devices such as multilayer switches, protocol converters, bridge routers, proxy servers, firewalls, network address translators, multiplexers, network interface controllers, wireless network interface controllers, ISDN terminal adapters and other related hardware.

Networking Hardware-Other

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.