[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

after vfr config not able to access the switch from the browser

Posted on 2011-04-19
3
Medium Priority
?
674 Views
Last Modified: 2012-05-11
Hi guys:

After completed config for all my routing switches with VRF-Lite to secure zones on the network now all switches configured with VRF I’m not able to access them from the browser
http server and http secure-server are enabled! I can ping and telnet to them but I need to be able to manage them from the web browser as well please help? .11 and .5 are ASA firewall interfaces.
Here is part of the config:
ip vrf C03
 rd 3:3
 route-target export 3:3
 route-target import 3:3
 route-target import 4:4
!
ip vrf M04
 rd 4:4
 route-target export 4:4
 route-target import 4:4
 route-target import 3:3
!
ip vrf S01
 rd 1:1
!
ip vrf S02
 rd 2:2
!
ip vrf T05
 rd 5:5
!
interface Vlan8
 ip vrf forwarding M04
 ip address 192.168.8.3 255.255.255.0
!
interface Vlan9
 ip vrf forwarding C03
 ip address 192.168.9.3 255.255.255.0
!
interface Vlan16
 ip vrf forwarding C03
 ip address 192.168.16.3 255.255.255.0
!
interface Vlan25
 ip vrf forwarding C03
 ip address 192.168.25.3 255.255.255.0
!
interface Vlan31
 ip vrf forwarding M04
 ip address 192.168.31.3 255.255.255.0
!
interface Vlan32
 ip vrf forwarding S02
 ip address 192.168.32.3 255.255.255.0
!
interface Vlan33
 ip vrf forwarding S02
 ip address 192.168.33.3 255.255.255.0
!
interface Vlan34
 ip vrf forwarding S01
 ip address 192.168.34.3 255.255.255.0
!
interface Vlan40
 ip vrf forwarding T05
 ip address 192.168.40.3 255.255.255.0
!
ip classless
ip route vrf S01 0.0.0.0 0.0.0.0 192.168.34.5
ip route vrf S02 0.0.0.0 0.0.0.0 192.168.32.5
ip route vrf C03 0.0.0.0 0.0.0.0 192.168.8.11
ip route vrf M04 0.0.0.0 0.0.0.0 192.168.8.11
ip route vrf T05 0.0.0.0 0.0.0.0 192.168.40.5
ip http server
ip http secure-server
0
Comment
Question by:modathir
  • 2
3 Comments
 
LVL 34

Accepted Solution

by:
Istvan Kalmar earned 1000 total points
ID: 35430375
Hi,

You need to disable VRF on the mgmt subnets, and you able to reach it via http!

Best reagards,
Istvan
0
 
LVL 5

Author Comment

by:modathir
ID: 35434186
but the management it is not only management there are otheer stuff there I may need to create other subnet but how do I route it to it from the one that in VRF?
0
 
LVL 5

Author Closing Comment

by:modathir
ID: 35499363
I created another VLAN non vrf and sub-interface on the firewall and configured the global routing on the switch with default route 0.0.0.0 0.0.0.0 192.168.5.1
which is the sub-interface on my firewall.

Thanks for your help.
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There’s a movement in Information Technology (IT), and while it’s hard to define, it is gaining momentum. Some call it “stream-lined IT;” others call it “thin-model IT.”
In this article, the configuration steps in Zabbix to monitor devices via SNMP will be discussed with some real examples on Cisco Router/Switch, Catalyst Switch, NAS Synology device.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question