How do I allow devices on a new vlan access to the internet?

Posted on 2014-07-25
Medium Priority
Last Modified: 2014-07-25

We are having a new VOIP system installed. Our current VOIP installation is still in production while the new one is set up for testing and evaluation. I added a new VLAN to the switch ( a Cisco C3560 with IOS 12.2 ) for the new system and assigned a few ports to it. I've also added the new vlan to the trunk ports and added a static ip route for all subnets to be forwarded to the gateway. A route was created on the firewall/router for the new vlan.

The switch, and any device attached to it, can ping the other subnets, but only the switch can ping external addresses (i.e. The devices appear limited to the LAN.

Having modeled the new vlan on the one that we had been using for voip, it's clear that I'm missing something. The existing voip system has no need to contact the outside world ( other than a few remote ip phones that we lost contact with some time ago ), but the new subnet can make use of internet access for administration and for some other features.

Admittedly, my ios skill-set is pretty basic. Any insights concerning what I'm doing wrong here would be greatly appreciated.

Question by:cordesc
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
LVL 50

Accepted Solution

Don Johnston earned 800 total points
ID: 40219369
Probably the new VLAN (subnet) hasn't been added to the NAT configuration on the firewall.

Author Comment

ID: 40219427
Thanks Don, that's what it was.

Author Closing Comment

ID: 40219431

Featured Post

Veeam Task Manager for Hyper-V

Task Manager for Hyper-V provides critical information that allows you to monitor Hyper-V performance by displaying real-time views of CPU and memory at the individual VM-level, so you can quickly identify which VMs are using host resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Implementing Avaya's One-X portal is pretty painless, until you want to deploy this to the Android and iPhone clients when these clients are outside of your network. The clients will also work within your local network. Here is our experience and so…
Almost all Internet protocol telephones have built-in switches at the back that allow you to connect your personal computer to one port and use the other port to connect your phone to to a Cisco switch.   Why we need to connect the PC to the pho…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question