Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Cisco Routing Question

Posted on 2014-03-10
7
Medium Priority
?
45 Views
Last Modified: 2015-09-15
I am planning on replacing some of our networking equipment as it is currently patch worked together.  Currently I am using a 3825 and a 3550 to do the routing at the hub location of our network.  My plan was to replace these two devices with a 3560X that I have.  

I have attached the config of the 3560X that I attempted to use.  The problem I have was the switch would only pass 192.168.1.X traffic out to our firewall.  My guess is it is a VLAN issue as traffic between all of the locations worked correctly.  I can provide any other relevant information to anyone who has any suggestions on this.
s1config.txt
0
Comment
Question by:joshparker
  • 5
  • 2
7 Comments
 

Author Comment

by:joshparker
ID: 39918631
I should have mentioned that 192.168.1.1 is the address of my firewall connected via g0/22.
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 39918982
1) Is your FW configured to NAT traffic from all the networks?

2) Does your FW have routes to the networks with the 3560 as the next hop?
0
 

Author Comment

by:joshparker
ID: 39919000
My firewall is configure to nat traffic from all networks and also has routers for all networks back to the 3560X  I was able to ping from the firewall to all networks but could not ping the firewall from those networks.  

I am pretty sure the problem was the firewall and entire 192.168.1.X subnet being on VLAN1.  I could access outside the network from that subnet but not any of the others but was unsure how to solve the issue.
0
Identify and Prevent Potential Cyber-threats

Become the white hat who helps safeguard our interconnected world. Transform your career future by earning your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

 
LVL 50

Expert Comment

by:Don Johnston
ID: 39919010
I was able to ping from the firewall to all networks but could not ping the firewall from those networks.  

Since pings are bi-directional, if the firewall can ping a device on network A, then a device on network A can ping the firewall... unless the firewall is blocking the ICMP echo request.

From a device on one of the problem networks, do a traceroute to the internet and see where it stops.  That would be a good starting point.
0
 

Author Comment

by:joshparker
ID: 39919044
All traffic bound for outside the network stopped at the 3560 when doing a trace route.
0
 

Accepted Solution

by:
joshparker earned 0 total points
ID: 40971776
Ended up using a different piece of equipment
0
 

Author Closing Comment

by:joshparker
ID: 40977690
Couldnt find a solution so used a different piece of equipment
0

Featured Post

Choose an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Make the most of your online learning experience.
This month, Experts Exchange’s free Course of the Month is focused on CompTIA IT Fundamentals.
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

564 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question