Solved

Setting up a network with multiple VLans and IP Routing

Posted on 2013-11-11
2
250 Views
Last Modified: 2013-12-16
Greetings,

I have a Cisco 3750X with IP Software.  Currently I have 2 VLANs,  one internal and one external, and a Cisco ASA Firewall connected to both.  Here are some partial configs:

Switch:
VLAN101 (External)
  no ip address
VLAN102
  ip address 192.168.0.1 255.255.255.0
VLAN103
  ip address 192.168.1.1 255.255.255.0

ip routing
ip route 0.0.0.0 0.0.0.0 192.168.0.5 1


Firewall #1:
Interface G0 (External)
  ip address (public IP address)
Interface G1 (Internal)
  ip address 192.168.0.5 255.255.255.0


Firewall #2:
Interface G0 (External)
  ip address (public IP address)
Interface G1 (Internal)
  ip address 192.168.1.5 255.255.255.0


If I want to introduce a second Firewall with the external interface in VLan 101 and it's internal interface in VLan 103, how do I add route(s) to the switch to let users in Vlan103 use the 192.168.1.1 as their default gateway and have outbound traffic going out through 192.168.1.5 with declaring that IP as the default gateway on the devices?

Thanks!
0
Comment
Question by:TCNinja
2 Comments
 
LVL 3

Expert Comment

by:Libipappachen
ID: 39640849
Hi,
      Your question is not clear, as per my understanding we can use PBR to do the work.
You can use policy-based routing (PBR) to configure a defined policy for traffic flows. By using PBR, you can have more control over routing by reducing the reliance on routes derived from routing protocols.

BR,
Libi
0
 
LVL 12

Accepted Solution

by:
Infamus earned 500 total points
ID: 39646079
You should configure default gateway as 192.168.0.5 for devices connected to vlan 102 and default gateway  as 192.168.1.5 for devices connected to vlan 103.

Basically, you have to assign firewall's LAN interface IP as default gateway, not the vlan interface of the switch.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question