?
Solved

Setting up vlan forwarding on Cisco 4510r Catalyst switch

Posted on 2014-02-26
8
Medium Priority
?
942 Views
Last Modified: 2014-02-28
Total novice but working with someone who has a clue.
Cisco 4510r running os 12.2

We had everything running in vlan 1 which was 10.0.0.x , gateway 10.0.0.1, subnet 255.255.252.0
We created vlan 20 which is set to 10.0.20.0, gateway 10.0.20.1, subnet 255.255.255.0.

We added 1 port to vlan 20 and verified that we could ping the new gateway.
We are attempting to get vlan 20 to route to vlan 1
So from a machine in vlan 20 with ip 10.0.20.100 be able to at least ping a machine in vlan 1 with IP 10.0.0.20.

no luck. Looking for any information that I can forward to the engineer working on this issue.
Thanks,
0
Comment
Question by:adamant40
  • 5
  • 3
8 Comments
 
LVL 1

Expert Comment

by:netdsg
ID: 39890683
Can the switch ping both the PC's?
0
 

Author Comment

by:adamant40
ID: 39890696
Yes
0
 
LVL 1

Expert Comment

by:netdsg
ID: 39890716
Verify the following:

ip routing is enabled on the switch with the 'ip routing' command in global mode

You can verify this on the switch console with a 'show ip route' command, routes for both networks should be present.

Verify the use of VLAN interfaces on the 4500 switch

Example:
interface vlan 1
ip address 10.0.0.1 255.255.255.0

The switch ports should look something like this:

int g0/x
switchport mode access
switchport access vlan 1

int g0/x
switchport mode access
switchport access vlan 20

Verify the default gateways on the PC's

10.0.0.x PC default gateway 10.0.0.1
10.0.20.x PC default gateway 20.0.20.1
0
Configuration Guide and Best Practices

Read the guide to learn how to orchestrate Data ONTAP, create application-consistent backups and enable fast recovery from NetApp storage snapshots. Version 9.5 also contains performance and scalability enhancements to meet the needs of the largest enterprise environments.

 

Author Comment

by:adamant40
ID: 39890769
Thanks I have passed that on to Engineer working on it and will update when I hear back.
0
 

Author Comment

by:adamant40
ID: 39893472
So things get more complicated, do my best to record what the engineer told me. If I can't provide enough information to make this clear I'll close out the question and award you the points.

They setup vlan 10 and vlan 20 and were able to route between those vlans no problem.

Most of our systems are in vlan 1 (guess that is the default). Vlan 1 has a gateway address of 10.0.0.5, the IP address of the switch itself.

Our Pix firewall is the 10.0.0.1 gateway IP.
0
 
LVL 1

Accepted Solution

by:
netdsg earned 2000 total points
ID: 39893888
One approach is to make the link between the firewall and the switch a routed link.  See the attached jpeg drawing L3 switch to Firewall Drawing
The key here is the 'no switchport' command on the switch port facing the firewall.

With this approach the appropriate vlan interface is the default gateway for the hosts.  The Layer three switch then routes traffic to the other Vlan or to the firewall as needed.  The firewall needs routes back to the vlans and NAT configuration for any new vlans.
0
 

Author Comment

by:adamant40
ID: 39895133
Thanks I'll pass this along and see what happens.
0
 

Author Closing Comment

by:adamant40
ID: 39895137
Unable to implement myself but will pass on to the engineer.
0

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The article explains the protocols and technology which is involved when two computers on different TCP/IP networks communicate with each other. In the diagram, a router is used to segregate two networks. The networks are 192.168.1.0/24 and 192…
I eventually solved a perplexing problem setting up telnet for a new switch.  I installed a new Cisco WS-03560X-24P switch connected to an existing Cisco 4506 running a WS-X4013-10GE Sup II-Plus. After configuring vlans and trunking,  I could no…
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month16 days, 9 hours left to enroll

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question