Link to home
Start Free TrialLog in
Avatar of smart Z
smart Z

asked on

looking for technical solution

Hello experts,

I am not a good networker and your assistance will be highly appreciated here.

I configured the core with the SVIs. I need to configure switch 1 fa0/1 to connection to the router R0 using interface fa0/0. The router out side interface will connect to the server vlan 200: 10.1.2.3.
I am assuming this server is connected to another network and hence that is why that IP is in vlan 200. The issue here is that vlan 20 is also using the same ip range in vlan 20.

Part 2 of the question is users in vlan 20 do want to access that server but the server should not access any resources or devices on the core switch or vlan 20.

I know this issue is complicated but i would like to know the solution. Please if someone will comment can you out the configuration as well.
topology-assist.JPG
Avatar of Don Johnston
Don Johnston
Flag of United States of America image

Really need some more information (the configs of the switches and routers, for example) to answer with any certainty.

The issue here is that vlan 20 is also using the same ip range in vlan 20.
I'm guessing one of those "20's" should be a 200?  That may or may not be problem.  It depends on where these VLAN's exist.  If they exist on the same switch, then it's a problem that most likely require changing some IP addresses or VLANs.

Part 2 of the question is users in vlan 20 do want to access that server but the server should not access any resources or devices on the core switch or vlan 20.
That's not too difficult to do. It just requires an ACL to block outgoing requests or incoming responses.
Avatar of smart Z
smart Z

ASKER

As per the topology the VLAN 200 is not a vlan in the core and it is behind the router shown. But it is using the same range / IP addressing scheme as vlan 20. I want to know how to best configure the link between that server in vlan 200 with IP 10.1.2.3 and provide access to users in vlan 20. Also at some point I want vlan 200 server from accessing the network in the core.

any suggestions please. I forgot to save the config file in packet tracer and lost the topology after I posted it but it is straight forward topology and I can rebuild it.

Thanks,
Avatar of smart Z

ASKER

The router has no config yet. That why I put this scenario so I can ask for assistance and configure the router.

Thanks,
ASKER CERTIFIED SOLUTION
Avatar of Don Johnston
Don Johnston
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of smart Z

ASKER

Hi Don,

That is good. Things have changed now in this topology and I will put a new one which is an actual work i will do onsite. I will post a similar topology tonight i need your assistance.
Thanks,