[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

VLan with multiple subnets

Posted on 2014-02-11
5
Medium Priority
?
56 Views
Last Modified: 2016-01-10
I have a network with voice and data vlans across several Cisco 3560G switches. I need to add a subnet to the data vlan and provide internet access to it. The subnets are completely separate class C; they are not contiguous Right now I can get internal network access but no internet. What is the best way to configure this?
0
Comment
Question by:kshing519
  • 2
3 Comments
 
LVL 4

Expert Comment

by:colditzz
ID: 39851881
I would hazard a guess that you either need to add an outbound NAT rule to your edge device to deal with the new subnet that has been created, or that there are ACLs stopping the new (and previously unknown) subnet accessing the internet.  As your existing subnets are non-contiguous, I would guess that you have individual outbound rules configured per subnet.

Of course, this could be well off the mark, but without knowing more about your specific configuration, these are the most likely reasons I can come up with.

Hope this helps.
0
 

Author Comment

by:kshing519
ID: 39851987
The edge device is vendor owned. They provide the subnets (because we use a hosted app over a vpn), but I must specify a router. I currently have a Win2003 server with an IP in each subnet. It is assigned as the gateway for the devices in the new subnet. In their router, they route that traffic back to my server.

Sub1 - 192.168.148.0/24
Sub2 - 192.5.141.0/24

The switches have vlans assigned by port - some voice, some data, some cameras. It seemed like when I connected to a data port, the vlan assignment went missing.

I'm trying to establish whether my issue is with the switch config or the routing.
0
 
LVL 4

Accepted Solution

by:
colditzz earned 2000 total points
ID: 39852015
It could be that the IP range you have used (192.5.141.0/24) is a public IP range, it is not part of RFC 1918 and this could be part of the problem, i.e. the vendor owned edge device is configured to only expect RFC 1918 ranges on it's inside.

Your server could be doing the NAT outbound.  But if you think the config looks correct, I would ask the vendor if they can see traffic between their device and the new subnet you have used.

Cheers
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Internet has made sending and receiving information online a breeze. But there is also the threat of unauthorized viewing, data tampering, and phoney messages. Surprisingly, a lot of business owners do not fully understand how to use security t…
Media Temple is thrilled to announce the launch of our new Partner Program, specifically designed to empower digital agencies and adtech platforms by offering white-glove support and exclusive hosting enhancements to optimize their sites and their c…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Suggested Courses

591 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question