Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 57
  • Last Modified:

VLan with multiple subnets

I have a network with voice and data vlans across several Cisco 3560G switches. I need to add a subnet to the data vlan and provide internet access to it. The subnets are completely separate class C; they are not contiguous Right now I can get internal network access but no internet. What is the best way to configure this?
0
kshing519
Asked:
kshing519
  • 2
1 Solution
 
colditzzCommented:
I would hazard a guess that you either need to add an outbound NAT rule to your edge device to deal with the new subnet that has been created, or that there are ACLs stopping the new (and previously unknown) subnet accessing the internet.  As your existing subnets are non-contiguous, I would guess that you have individual outbound rules configured per subnet.

Of course, this could be well off the mark, but without knowing more about your specific configuration, these are the most likely reasons I can come up with.

Hope this helps.
0
 
kshing519Author Commented:
The edge device is vendor owned. They provide the subnets (because we use a hosted app over a vpn), but I must specify a router. I currently have a Win2003 server with an IP in each subnet. It is assigned as the gateway for the devices in the new subnet. In their router, they route that traffic back to my server.

Sub1 - 192.168.148.0/24
Sub2 - 192.5.141.0/24

The switches have vlans assigned by port - some voice, some data, some cameras. It seemed like when I connected to a data port, the vlan assignment went missing.

I'm trying to establish whether my issue is with the switch config or the routing.
0
 
colditzzCommented:
It could be that the IP range you have used (192.5.141.0/24) is a public IP range, it is not part of RFC 1918 and this could be part of the problem, i.e. the vendor owned edge device is configured to only expect RFC 1918 ranges on it's inside.

Your server could be doing the NAT outbound.  But if you think the config looks correct, I would ask the vendor if they can see traffic between their device and the new subnet you have used.

Cheers
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now