Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Need help creating an isolated group of ports across 3 switches

Posted on 2015-01-17
5
Medium Priority
?
102 Views
Last Modified: 2015-01-27
Hello -

I have 3 switches.  Currently they're all setup at their default settings.  I can access the web interface for all of them, and I've already identified which ports link them together, etc.  I want to setup a few ports on one end that only has access to a few ports on the other end - but the other end will be the 3rd switch down the line.  They're all linksys / cisco smart switches.  I don't understand tagging and untagging properly I guess because as a test on one of the switches I tried putting the internet router and a workstation tagged to VLAN 25 (I had created that one as a test) but they are unable to ping each other.  The devices on the ends of the switches are NOT VLAN aware.  They're PC's and dumb routers.  What's the best way to do this?

Thanks!
0
Comment
Question by:TimFarren
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
5 Comments
 
LVL 2

Author Comment

by:TimFarren
ID: 40555426
To clarify - these ports should be unable to talk to any other computers or devices except what's allowed at the other end.  Sorry I left that part out.
0
 
LVL 37

Expert Comment

by:bbao
ID: 40555598
please advise the model numbers of the three switches as we need to make sure you have at least one layer-3 switch in order interconnect the VLANs as you expect.

all VLANs are separated from each other as they work at Layer-2 and need a Layer-3 router to connect the VLANs (actually their corresponding subnets). A layer-3 switch can handle routing as a regular router, hence you need at least one of this kind of device.
0
 
LVL 2

Author Comment

by:TimFarren
ID: 40555628
I got this working through painstaking trial and error but I'm not sure if I did it the best way possible. The 3 switches are Cisco smart switches. 2 of them are older and don't support trunking by the looks of things. Here's what I did:

Switch 1:  
Port 19 (PC attached I want to segregate)
Assigned PVID 25 and Untagged VLAN 25
Port 1 - uplink to second switch
Tagged for VLAN 25
Switch 2:
Port 13 - uplinks with switch 1
Set tagging for VLAN 25
Port 24 - uplinks to switch 3
Set tagging for VLAN 25
Switch 3 (this one supports trunking)
Port 25: trunk
Port 7 and 8 (leads to devices we want segregated also)
VLAN PVID 25 / Untagged

On switch 3 I configed all ports to be "access" ports except the last 2 which I left at trunk.

How badly did I screw best practice up here?  :-)
0
 
LVL 2

Accepted Solution

by:
TimFarren earned 0 total points
ID: 40555689
Switch 3:  SG200-26
Switches 1 and 2: SLM2024
0
 
LVL 2

Author Closing Comment

by:TimFarren
ID: 40572357
I guess this is ok - no experts had any further comment.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
Outsource Your Fax Infrastructure to the Cloud (And come out looking like an IT Hero!) Relative to the many demands on today’s IT teams, spending capital, time and resources to maintain physical fax servers and infrastructure is not a high priority.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question