Question SG300-10 (!)

Hi all

I'm Karim.

I have a sg300-10 switch.

update the firmware with the last of them. Everything is OK.

Things are complicated when I create 2 VLANS. (really 1 cause VLAN the native first is). So I have the first VLAN interface 192.168.1.254

years VLAN 2 IP wich is 192.168.2.254

I'm connected with my workstation (ip: 192.168.1.2/24 with GW 192.168.1.254) and I try to do a ping to a web server on VLAN 2 (ip: 192.168.2.2/24 GW 192.168.2.254)

Ping is OK!

But when I try to reach any port of the Web server: nothing.

can someone help me configure the switch that I can use it completely...

Thanks in advance, everyone

Karim.

PS: My VLAN 1 is not marked on the access port, and my 2 VLAN is tagged on trunk port (because I want to create another VLAN on that port

.  (1UP, 2T, 3T, 4T)

Karim,

What do you use as a layer 3 device?  If your use of the switch, make sure that the gateway of Web servers are switches vlan address.  If this is not the case, the answers back you.

Tags: Cisco Support

Similar Questions

  • SG300 Setup question

    Hi and thanks for reading.

    I have 3 sg300 switch/routers, I'm trying to set up and I have a few questions. This is how I have it set up so far.

    SG300 #1 mode layer 3 (router) with spf ge27 connected to our switch through fibers. have set up 2 VLANS (vlan1 10.10.0.1 device ip value) contains all the unidentified ports. (vlan200 ip 172.30.0.30 the value contains the ge27 port). our main hp curve pro is 172.30.0.1.

    second sg300 #2 (layer switch mode 2) a fiber connecting port 10 to 28 of the first sg300 port. This one has 1 vlan with ip defined on 10.10.0.3

    third sg300 #3 (layer switch mode 2) a fibre port connected to the port the second sg300 also with 1 9 vlan, ip device set to 10.10.0.4.

    After you add the declarations of good road to the first device I can ping to all remote subnets and receive answers from one of the devices. everything seems to be working but having a weird problem. I can't device managed on the basis of 2 or 3 (interface) web from anywhere that directly connected to one of the 3 devices. I can handle the device one from anywhere.

    Not sure if it's the correct configuration or what Miss me to be honest.

    Thank you

    On the 2 switch, the switch must have a default gateway specified in order to manage from a different subnet.

    -Tom
    Please evaluate the useful messages

  • LACP hash between N3048 and CISCO SG300/SG200 + question Twinax attach direct cable

    Hello

    In my network I have deployed two new N3048 with 2 transceivers SPF + and SPF module back + as core switches are connected to other 3 switches from edge of N2048 using optical fiber and I reused my previous CISCO SG300 and SG200 goes to serve the other two boxes of my campus via the spine in copper.

    I have 4 copper cable which starts from the hub of the SG300 network and 2 the SG200 brass. I set up to have a redundant connection using 2 + 2 with SG300 and 1 + 1 with SG200 RSTP.

    So for the SG300 I re LAG + LACP to have two channels of the N3048s port, but now that a single cable is connected because I don't know what kind of LACP hash mode should I put on N3048 to have a compatible hash between Dell and Cisco switches.

    My N3048 have mode 7 (Advanced hash) as default but I guess that cisco models do not understand... so, what mode is the best for LACP work perfectly with small business cisco switches?

    I also received my twinax cables to connect my two N3048 via SPF + back modules... conhot can I plug the cables into the slots SPF + (already mounted) without turning off my basic switches?

    Thank you!

    See you soon

    Cables can be connected/disconnected, but I don't know if the real module SFP + for the rear of the N3000 is hot plug.

  • Questions, get the addresses IP of SG300-20

    I have the following configuration:

    2 SG300-20 with a VIRTUAL LAN (default value... we are a fairly small network) value L2

    1 HP ProCurve L3 switch/router with two VLANS (one for VOIP) and one for the LAN

    The SG300-20 at the bottom of the basket has all the servers (about 6).  It is then connected to the ProCurve to port 5-port ProCurve 25.

    The SG300-20 above which has all the desktops (10).  It is connected to the SG300-20 above the port 19 at the port of the other SG300 20.

    The ProCurve software has all IP phones and the WAN connected (via a Sonicwall) to port 26.

    Everything works, except for the workstations that are trying to enter a new address from the DHCP server after the expiry of the duration of LIFE (I'm guessing that this is the problem because once they are connected, they are stable as a rock).  They just go round and round, and then report a NETWORK not IDENTIFIED for the NIC.  Sometimes it connects, but over time the problem seems to be growing.  Reboot the switch with workstations seems to be accelerating, but I need to check it after working hours this weekend.

    All this experience?  See a problem with my configuration?  Should I rather plug the router (ProCurve) on each switch and captured to eliminate the link between the two SG300?

    Thanks for any help!

    Dear William,

    I think that this post is a duplicate of:

    https://supportforums.Cisco.com/thread/2241120

    I'll be looking forward to hear from you.

    Kind regards

    Jeffrey Rodriguez S... : | :. : | :.
    Support Engineer Cisco client

    * Please rate the Post so other will know when an answer has been found.

  • How to track down the STP with SG300-52 questions and SG300-28 - the command debug debug mode password?

    Hello *.

    actually, I'm trying to track down and identify serious problems of STP loop to my switch tree SG300-xy.

    For further investigation, I would use the CLI debug mode but unfortunately the

    debugging

    debug mode command is password protected. I always "DEBUG password: *" :-((

    Could someone please help with the password of the SG300-xy switches with 1.3.0.62 firmware debugging it please?

    Thank you very much in advance for your help and your response!

    Best regards
    Matthias

    Hi Matthias, debugging is to engineer end only, it has no practical use.

    Also, if you are unable to go to the debug console, it is unsupported.

    I don't know how you can have a loop spanning trees like the tree covering weight stops redundant links. So I think that you are either using BPMH and incorrectly labeled regions or added a vlan incorrect or these switches connect in a device that is not active PLEASE and causing the transfer of issues like that.

    Quite honestly if you have a loop of network which is so bad, the best thing to do is to unplug the 1 wire at a time until you see what link has caused.

    -Tom
    Please mark replied messages useful

  • SG300-28 questions - InterVLAN routing

    Hi all

    I am trying to switch SG300-28 place and do work for several days, with a very simple configuration, but this device is just to stuborn giving me headaches. I hope that you will tell me a solution to my problem.

    So I configured the VLAN on the switch, assigned to all ports, given IP addresses for VLANs, etc.. But I digress not test phase where I try to rattle of two stations of different VLANS.

    I have pictures of the attached current configuration. Stations are on ports 4 (VLAN4) and port 15 (VLAN3). First good 192.168.30.x a station address with the default gateway 192.168.30.1. Second station address of the 192.168.5.x and gateway 192.168.5.1. The two stations can ping the two gateways, but not eachother. Traffic within a VIRTUAL local network works fine, so routing is the most obvious problem.

    There is no active ACLs.

    Please see attached photos and give me something to try, because I spent three days to experiment without luck!

    One of the biggest mistakes I see relies on 'ping' to see if things work. Do not forget that the 'ping' sends a request to echo, that does not force the customer to send and echo response. Ensure that stations are configured to respond to pings or try to access a share, or a service configured on clients. Another thing to consider, that the client ports access ports and not General, this can be a problem, but it should be allowed, as is.

    On a side note, the current configuration you cannot access anything out in the cloud. If you need to access cloud do not forget to add a default route on the switch.

    I hope this helps!

  • VLAN SG300-10 Questions

    My apologies if this has been asked before, but I have a few questions on setup of my new switch and network. I've never worked with before switches, so it's quite a learning experience. The image above shows the current provision of my network. Here's how I tried to implement, so far.

    VLAN 1 [1-4 Ports, unidentified, trunk] (172.16.1.1/24)

    Workstation A (wired)

    172.16.1.2/24

    Server B (wired)

    172.16.1.3/24

    VLAN 2 [Ports 5-8, unidentified, trunk] (172.16.2.1/24)

    Server C (wired)

    172.16.2.2/24

    Server (wired)

    172.16.2.3/24

    Server E (wired)

    172.16.2.4/24

    Server F (wired)

    172.16.2.5/24

    VLAN 3 [9-10, unidentified, trunk Ports] (192.168.1.1/24)

    G laptop (wireless)

    DHCP through a router

    H laptop (wireless)

    DHCP through a router

    Laptop I have (wireless)

    DHCP through a router

    Wireless router

    192.168.1.254/24

    Now, my goal is to have all 3 VLAN power talking to each other but also have VLAN 1 access to the internet through the wireless router. In the future, I also Server B to be able to expose services (http and ssh) outwards. VLAN 2 should not have access to the internet at all. I know that I can add static to the wireless router, if necessary routes. All three laptops, can access the internet via the wireless router, with no problems.

    So my questions are:

    (1) is there something inherently wrong with the design of this network? If so, what could be changed?

    (2) 3 VLAN isn't really necessary?

    (3) what I need to do, to get the 3 VLANS communicate with each other?

    (4) what should be the doors, to get internet access 1 VLAN?

    (5) what would need to do, to expose services from Server B to the outside?

    (6) what static routes can I add?

    Thanks in advance!

    Jer

    Hello Jeremy,.

    I think that the problem is probably in the router does not route traffic to the switch. That no interface you specified in your career? Once the routing works, DNS should also work.

    Kind regards

    -David Aguilar

    Cisco Small Business Support Center

  • Question of VLAN voice SG300 - 28 p

    Hello

    I was running firmware 1.1.2.0 and everything worked well on 2 of these switches, connected by fiber.  I tried upgrading to the latest firmware (1.3.5.58) and had no luck.  Our phones which are combined Avaya 9650 VoIP has not found the router, would find no DHCP and waited for LLDP.  The update has been applied only on the switch away from the PBX, and yet he still messed up the other switch.  I put the firmware to the original active version, and everything started working again.

    Nothing changed except when I rolled back the version of the firmware, he left all the phones connected to the ports, it changed their marking to not signposted.  I put this back and everything worked fine.

    Y at - it an inconsistency with this firmware with my phones, or what else could be the problem?

    Hi Chris, I think the problem is, the 1.1.2.0 is very different from every version after. When the 1.2.7.76 firmware was introduced it changed the XML code in the switch. If you jump to the top of the 1.1.2.0 to release it later you really should delete your config switch and not reload a configuration file.

    -Tom
    Please mark replied messages useful

  • VLAN SG300 - 28 p L3 Question

    Hello

    I'm fighting for the last 20 days to learn how to change IP address on my switch. When the switch came 1st time, he grabbed a my server DHCP address. I changed the config instead of default L2 L3 configuration. After that point he does give me not an option to change the static IP address. I changed to static IP, but it allows me to change the mask only.

    My need is to change the IP Address of the interface vlan1 to be du.1 default gateway. So far, I am unable to do so. Attached screenshot shows that the IP address field is not modifyable.

    Any ideas?

    You have activated services (security-> TCP/UDP services)? and copied running at startup? ('Save')

    Svein

  • Switch-SG300-20-20 as L3 switch?

    Hello

    In the company of a client, there is a ring of 3850 switches (L3) connected by optical fiber (the links are links L3 not trunks) and using OSPF for routing traffic between the different VLAN switches.

    Now, the client wants to include a new switch between two switches exist (they are now linked) but using a Cisco SG300-20-20. My question is: can this work as an L3 switch? I have seen that you can configure static routes but I didn t find anything on routing protocols.

    Thank you!

    Yes No ospf sorry just found post indicating 32 static not even tear apart on sg300, not really OSI 3, then you'll need something better, check again the sg500 who is mentioned in the post that only handles same ospf, a 2960xr switch supports ip ospf routes lite only about 200 dynamic and eigrp stub but its an option like layer switch not expensive 3

    http://www.Cisco.com/c/en/us/TD/docs/switches/LAN/catalyst2960xr/SOFTWAR...

    https://supportforums.Cisco.com/discussion/11533276/does-SG300-10-suppor...

  • Removal of VLAN Tag on SG300.

    Hi all, tried searching but I am unable to find a specific answer to my question.

    I'm testing some equipment at the present time, the basic configuration is a software tester on laptop connects via ethernet on Board of our HAD. Some data must pass through our ESE and reach a second device. Tagged data flows from the laptop to the ESA. I have two switches SG300-10 which is given to me.

    These tests require test data to be S - tag only; 802.1ad 0x88A8 Ethertype with my choice of VID (100). There is no C - Tag (0 x 8100), unusual, I know! However my second device cannot manage the VLAN, so I need to remove the label.

    Previous test required only the C - tag data, and I managed to remove the labels quite easily by connecting the DUT for the switch port 10, second device with port 10 bridge interface and tagged VLAN 100 the value member and port 9 and 10 port access VLAN 100 interface.

    I tried different combinations of setting port 10 customer/general/trunk interfaces but were unable to remove the tags out of port 9. I was able to capture the images desired on port 9 straight, but they are of course marked. I'm working on the presumption that the SG300 can remove S - Tags on output.

    The device to port 9 has need of answering queries ARP with a specific MAC address and the response on the same VLAN, which would switch to add to the ARP response. I don't know if this is possible, but perhaps I could replace this device with the second switch if it would respond to ARP on one VLAN only S-Tag.

    I would appreciate any pointers that everyone has!

    An access port on the SG300 facing the marked port of the remote site has to accomplish this. Handling tag always happens generally during penetration.

  • Incorrect display of Port settings of the WEB GUI - port-sx300_fw 14088 SG300 - 28 p management

    Running V02 SG300 - 28 p in Layer 3 Mode.

    I have upgraded to the latest firmware and bootloader. I noticed that my ports management screen not display correctly.  It displays any of the table and it looks like a few places at the top without (almost empty) text.

    There is also a window Edit to Port VLAN that does not display a usable screen - no text and a few radio buttons.

    Someone has an idea of what I can do to fix this?  MD5 hash on my download games so I think not only its corrupt, more it flashed just fine on the switch.

    -Edit - the security setting has not set the pobrlem (forgot to return to the 1.4.0.88 fw)

    Here are the two screens that still have questions:

    Hi Robert,.

    I think that this message can help:

    https://supportforums.Cisco.com/discussion/12358601/SG200-50p-Web-interf...

    Kind regards

    Aleksandra

  • Ports SG300 & AutoSmart for VLAN

    I have a few questions about the use of the ports VLAN & autosmart voice. I was running into a few problems getting it working 100% in my environment. Here in a few words, my network

    Switch to simple port SG300 52, 1-47 ports are configured unmarked VLAN110 (my PC LAN) and tag VLAN 140 permits (my voice VLAN) is 1 / the default VLAN on the switch and I have no assigned IP address and closed it.

    Made various reading I found this on the Forum:

    "The macro just get in the way most of the time. A default state on the switch a user will set the id of the vlan voice with orders

    (config) #voice vlan id 100

    * This will create the vlan 100

    VLAN, VoIP? * You can use to change your defaults for dscp and cos a long with all the other settings.

    State of vlan (config) enabled automatic #voice

    (config) #interface rank fa1-24

    (config-if-range) #switchport trunk vlan 101 native

    trunk (config-if-range) #switchport allowed vlan add 100

    * This function will define the vlan native on the trunk to 101 for the data port and vlan tagged will be 101 for the voice.

    CDP is enabled automatically and must learn the features of the phone and get on the phone to the vlan 101 on this port. »

    It worked well for my except in the case where I would have a phone plugged into the switch and a desktop computer hooked up to the back of the phone. I have to define the macro for IP + Desktop phone, then set it to VLAN for the 110 Office. If I don't he would stay to the VLAN ID of 1.  It's my only option? Can I change the default VLAN to 110 and just delete 1 VLAN? I was also running a random question with my laptop only where certain ports that I would link to (even if 1-47 are that all configured the same) would put just my laptop on VLAN 1, I'd watch the port autosmart and just, he would say "Default". I also disabled all the macro options IP Phone & IP Phone+ office. I really want to use this phone, I have no need of the autosmart ports do something else. Any suggestions or advice for this?

    Yes, by default the 'phone - PC' macro will set the default value of the Vlan untagged on the port to the Vlan 1.  You must simply change this macro and change the setting native_vlan to 110.  So when this macro runs Vlan untagged will be 110.

    No, do not change the default Vlan

    Good uncheck all types expect the phone phone & IP IP + Office

  • Creation of trunk of Cisco 6513 to Cisco SG300 - 10 p for Shoretel phones

    I plugged a new Cisco SG300 - 10 p in an access on our Cisco 6513 port, which is in vtp mode.  I think I will need to create a trunk port of the Cisco SG300 - 10 p 6513, to carry out my office data vlan 1 and my new vlan 112 shoretel VOIP.  I believe that some how all ports are in mode trunk on the default sg300.  I have attached a picture of what it looks like on the management area of vlan sg300.  For some reason any I can plug 3 phones in the sg300 currently just plugged in the 6513 access port and one of the 3 phones come with the vlan voip good 112 and goes into the service very good.  The other 2 phones come but show no service, until I closed the port on sg300 for these other 2 phones and then put the ports back up, then the phones go up.  All of this without going through the port on the Cisco 6513 as a trunk port, it is only now as an access port vlan 1 data and vlan 112 voip vlan.

    My question is, should I put the cisco 6513 in trunk mode and the sg300 will attempt to become the server in vtp and ruin my entire network.  This is what scares me, because I've heard the horror stories of what happens.  My other question is if I have to put the port in trunk mode on him going the sg300 6513, it causes all future phones at the same time without problems?  What would be the cause of 1 of the 3 phones to come as they do and 2 others to come after stop int and put it up?

    Thanks Dave

    Double post.

    Go HERE.

  • SG300-10 & routing InterVLAN Actiontec M1424WR (Rev E) problem

    I know that many of the similar issues were invited on this topic, but following the guidelines had no success for me.

    I created VLANs with the SG300-10 L3 mode, but in each VLAN, clients are not able to ping each other. Each VLAN can ping the router, switch, and has internet access

    Here is my configuration info.

    config-file-header
    v1.4.0.88 / R800_NIK_1_4_194_194
    CLI v1.0
    router adjustment system mode

    indicator SSD of excluded files
    @
    Jumbo-frame of port
    database of VLAN
    VLAN 2-4
    output
    Add a voice vlan Yes-table 0001e3 Siemens_AG_phone___
    Add a voice vlan Yes-table 00036 b Cisco_phone___
    Add a voice vlan Yes-table 00096e Avaya___
    Add a voice vlan Yes-table 000fe2 H3C_Aolynk___
    Add a voice vlan Yes-table 0060 b 9 Philips_and_NEC_AG_phone
    Add a voice vlan Yes-table 00d01e Pingtel_phone___
    VLAN voice Yes-table add Polycom/Veritel_phone___ 00e075
    Add a voice vlan Yes-table 00e0bb 3Com_phone___
    The dhcp server IP
    network IP dhcp pool 2 VLANs
    address 192.168.2.2 low high 192.168.2.254 255.255.255.0
    Infinite rental
    default router 192.168.2.1
    Server DNS 8.8.8.8
    output
    network IP dhcp pool VLan 3
    address 192.168.3.2 low high 192.168.3.254 255.255.255.0
    Infinite rental
    default router 192.168.3.1
    Server DNS 8.8.8.8
    output
    network IP dhcp pool VLan 4
    address 192.168.4.2 low high 192.168.4.254 255.255.255.0
    Infinite rental
    default router 192.168.4.1
    Server DNS 8.8.8.8
    output
    Hello interface range vlan 1
    output
    privilege of encrypted password username cisco 15
    IP http timeout policy 1800 HttpOnly
    clock timezone ""-4
    clock source browser
    The telnet server IP
    !
    interface vlan 1
    192.168.1.20 IP address 255.255.255.0
    no ip address dhcp
    !
    interface vlan 2
    Name
    IP 192.168.2.1 255.255.255.0
    !
    interface vlan 3
    name B
    address 192.168.3.1 IP 255.255.255.0
    !
    interface vlan 4
    name C
    192.168.4.1 IP address 255.255.255.0
    !
    interface gigabitethernet1
    switchport mode access
    !
    interface gigabitethernet2
    switchport mode access
    !
    interface gigabitethernet3
    switchport mode access
    !
    interface gigabitethernet4
    switchport mode access
    switchport access vlan 3
    !
    interface gigabitethernet5
    switchport mode access
    switchport access vlan 4
    !
    interface gigabitethernet6
    switchport mode access
    switchport access vlan 4
    !
    interface gigabitethernet7
    switchport mode access
    !
    interface gigabitethernet8
    switchport mode access
    !
    interface gigabitethernet9
    switchport mode access
    !
    interface gigabitethernet10
    switchport mode access
    !
    output
    Default IP gateway 192.168.1.1

    My router is Actiontec M1424WR (Rev E) with the following configuration in the routing table:

    So my questions/challenges are:

    (1) customer in VLAN 3, (192.168.3.2/24) can ping (192.168.1.20/24) Switch and router (192.168.1.1/24) and VLAN 4 (192.168.4.1/24)

    , but NO client in VLAN 4 (192.168.4.2/24)

    (2) this point is common to all the VLANS

    (3) the installation of the final network is below, but in testing phase at the moment. VLAN 5 has not yet been configuration.

    The final installation would enable the VLAN 2 and VLAN 5 to communicate in order to access the NAS.

    Any help will be greatly appreciated, thanks!

    Hello

    To me, it looks like customers used for testing such as PC Windows Firewall blocks the request to the other subnet. Try to disable the windows firewall and to test the ping.

    Kind regards

    Aleksandra

Maybe you are looking for

  • I have two different e-mail accounts, an i forgot the password too and can only restore from a backup.

    The thing is that I have an email from work on an old portable win7.I also have a Hotmail account.Both of which were backed up by "Mozbackup.I have backups and that you want to install on my new laptop with Thunderbird.But two backups Save in the def

  • Firefox page selection

    Firefox 3. had a drop-down list box the "<-" go back a page / '-> 'go forward icons on a page that allowed to choose what page he wanted rather than go back or forward one page at a time. "" Firefox 4. does not have this feature. At least I didn't th

  • Docking station for AT270

    Someone at - it experience with a Toshiba Tablet docking station? The "Toshiba Multi Dock with HDMI (for the Tablet Toshiba Thrive). Part - No. PA3934U-1PRP working with excited especially with German AT270-101 tablets?

  • How to work in diferent sequences...

    Hello!! I make a program and I need to connect two PCs, it PC do the same job, send and receive information... I'm abale to send information in 10 ms, so I think that, what I can... PC1 send info in 10ms while the pc2 is reading information, after th

  • HP 15-b102sp: defective drive, got a new. How can I install the Windows 8 without having to pay?

    So I got this product and after a drive of one and a half contained errors and had to replace it. Now I am fighting to reinstall windows 8! How can I do without having to buy Windows 8?