We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

after vfr config not able to access the switch from the browser

modathir
modathir asked
on
Medium Priority
685 Views
Last Modified: 2012-05-11
Hi guys:

After completed config for all my routing switches with VRF-Lite to secure zones on the network now all switches configured with VRF I’m not able to access them from the browser
http server and http secure-server are enabled! I can ping and telnet to them but I need to be able to manage them from the web browser as well please help? .11 and .5 are ASA firewall interfaces.
Here is part of the config:
ip vrf C03
 rd 3:3
 route-target export 3:3
 route-target import 3:3
 route-target import 4:4
!
ip vrf M04
 rd 4:4
 route-target export 4:4
 route-target import 4:4
 route-target import 3:3
!
ip vrf S01
 rd 1:1
!
ip vrf S02
 rd 2:2
!
ip vrf T05
 rd 5:5
!
interface Vlan8
 ip vrf forwarding M04
 ip address 192.168.8.3 255.255.255.0
!
interface Vlan9
 ip vrf forwarding C03
 ip address 192.168.9.3 255.255.255.0
!
interface Vlan16
 ip vrf forwarding C03
 ip address 192.168.16.3 255.255.255.0
!
interface Vlan25
 ip vrf forwarding C03
 ip address 192.168.25.3 255.255.255.0
!
interface Vlan31
 ip vrf forwarding M04
 ip address 192.168.31.3 255.255.255.0
!
interface Vlan32
 ip vrf forwarding S02
 ip address 192.168.32.3 255.255.255.0
!
interface Vlan33
 ip vrf forwarding S02
 ip address 192.168.33.3 255.255.255.0
!
interface Vlan34
 ip vrf forwarding S01
 ip address 192.168.34.3 255.255.255.0
!
interface Vlan40
 ip vrf forwarding T05
 ip address 192.168.40.3 255.255.255.0
!
ip classless
ip route vrf S01 0.0.0.0 0.0.0.0 192.168.34.5
ip route vrf S02 0.0.0.0 0.0.0.0 192.168.32.5
ip route vrf C03 0.0.0.0 0.0.0.0 192.168.8.11
ip route vrf M04 0.0.0.0 0.0.0.0 192.168.8.11
ip route vrf T05 0.0.0.0 0.0.0.0 192.168.40.5
ip http server
ip http secure-server
Comment
Watch Question

Head of IT Security Division
CERTIFIED EXPERT
Top Expert 2010
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION

Author

Commented:
but the management it is not only management there are otheer stuff there I may need to create other subnet but how do I route it to it from the one that in VRF?

Author

Commented:
I created another VLAN non vrf and sub-interface on the firewall and configured the global routing on the switch with default route 0.0.0.0 0.0.0.0 192.168.5.1
which is the sub-interface on my firewall.

Thanks for your help.
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.