How do you create a VLAN on Cisco 1841?

Hello Experts,

Can anyone describe how to create a VLAN on a Cisco 1841 using zone based firewall?

I used the int VLAN# command and setup the ip address but am unable to ping the gateway. I also made sure that the applied the interface to the same zone as my internal network.
LVL 1
katredrumAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

JhunjoeCommented:
You see if the below apply to your situation.

Add an interface to a non-existent VLAN the router will create the VLAN for you.

configure terminal
interface fa0/0/0
switchport mode access
switchport access vlan 1


Then you need to assign an IP to the VLAN interface so that traffic can hit it:
interface vlan 1
ip address 192.168.100.1 255.255.255.0
no shutdown (VLAN interfaces are shut by default)
0
Istvan KalmarHead of IT Security Division Commented:
Hi,

If you not have HWIC-4ESV card you not able to config VLAN interface!

the code:

int fast 0/0
 no ip add
int fast 0/0.1
 ip nat ins
 encapsulation dot1q 1 native
 ip address 192.168.1.1 255.255.255.0

int fast 0/0.2
ip nat ins
 encapsulation dot1q 2
 ip address 192.168.21 255.255.255.0
0
Don JohnstonInstructorCommented:
In addition to creating the VLAN interface, you must also create the VLAN.

vlan database
 vlan 7
exit


0
KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

katredrumAuthor Commented:
Jhunjoe, I configured one of my fe ports as your suggestion although do I need to have a device plugged into that port? I cannot ping the interface at all and I would think I could at least ping the interface.
0
Don JohnstonInstructorCommented:
Once again...

In addition to creating the VLAN interface, you must also create the  VLAN.

vlan database
 vlan 7
exit

0
katredrumAuthor Commented:
donjohnston, do i create the vlan database on the interface i just configured the vlan (fe0/1/2)?
0
Don JohnstonInstructorCommented:
No. The VLAN database is independent of interfaces. The "vlan database" command is issued from privileged mode.
0
katredrumAuthor Commented:
but when i assigned the int VLAN # command it already created the VLAN in the database. I can see it there. the problem still exists where I cannot ping the VLAN interface.
0
Don JohnstonInstructorCommented:
Do you have any functioning interfaces that are carrying traffic for the VLAN?

Please post your config.
0
t509Commented:
You´ll have to plug some device in the port you assigned the vlan. It doesn´t matter what IP this device is using...why should the VLAN go UP, when nobody is connected?
Check this with

sh int vlan <YOUR VLAN NUMBER>

and look at the informations provided, especially

Vlan<YOUR VLAN NUMBER> is up, line protocol is up

This is how it SHOULD look if everything is OK.
It will look this way

Vlan<YOUR VLAN NUMBER> is up, line protocol is down

if nothing is connected to any member-port.

HTH
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
t509Commented:
Forgot to explain:
The portion PROTOCOL is responsible for the answers to your pings. If down, no one can answer.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Cisco

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.