Solved

VLan with multiple subnets

Posted on 2014-02-11
5
21 Views
Last Modified: 2016-01-10
I have a network with voice and data vlans across several Cisco 3560G switches. I need to add a subnet to the data vlan and provide internet access to it. The subnets are completely separate class C; they are not contiguous Right now I can get internal network access but no internet. What is the best way to configure this?
0
Comment
Question by:kshing519
  • 2
5 Comments
 
LVL 4

Expert Comment

by:colditzz
ID: 39851881
I would hazard a guess that you either need to add an outbound NAT rule to your edge device to deal with the new subnet that has been created, or that there are ACLs stopping the new (and previously unknown) subnet accessing the internet.  As your existing subnets are non-contiguous, I would guess that you have individual outbound rules configured per subnet.

Of course, this could be well off the mark, but without knowing more about your specific configuration, these are the most likely reasons I can come up with.

Hope this helps.
0
 

Author Comment

by:kshing519
ID: 39851987
The edge device is vendor owned. They provide the subnets (because we use a hosted app over a vpn), but I must specify a router. I currently have a Win2003 server with an IP in each subnet. It is assigned as the gateway for the devices in the new subnet. In their router, they route that traffic back to my server.

Sub1 - 192.168.148.0/24
Sub2 - 192.5.141.0/24

The switches have vlans assigned by port - some voice, some data, some cameras. It seemed like when I connected to a data port, the vlan assignment went missing.

I'm trying to establish whether my issue is with the switch config or the routing.
0
 
LVL 4

Accepted Solution

by:
colditzz earned 500 total points
ID: 39852015
It could be that the IP range you have used (192.5.141.0/24) is a public IP range, it is not part of RFC 1918 and this could be part of the problem, i.e. the vendor owned edge device is configured to only expect RFC 1918 ranges on it's inside.

Your server could be doing the NAT outbound.  But if you think the config looks correct, I would ask the vendor if they can see traffic between their device and the new subnet you have used.

Cheers
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

You may have a outside contractor who comes in once a week or seasonal to do some work in your office but you only want to give him access to the programs and files he needs and keep privet all other documents and programs, can you do this on a loca…
We need a new way to communicate time sensitive or critical info.   The best part of my role at xMatters is visiting our clients all over the world to learn about how they operate their businesses, share insights that xMatters has gleaned across…
This tutorial gives a high-level tour of the interface of Marketo (a marketing automation tool to help businesses track and engage prospective customers and drive them to purchase). You will see the main areas including Marketing Activities, Design …
Video by: Mark
This lesson goes over how to construct ordered and unordered lists and how to create hyperlinks.

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

26 Experts available now in Live!

Get 1:1 Help Now