VLAN in environment ESXi5 Switch Cisco SG300 and gateway RV220W

Hi, I'm having a few problems getting VLANing to work properly.  I was hoping that someone would be able to point me in the right direction.  I spend a RV220W which has 2 VLANS on VLAN1 with a 192.168.1.x and VLAN 104 subnet with a subnet of 192.168.104.x.  Port 4 of the goes to port the SG300 Switch 20.  Port 20 switch SG300 has VLAN 1 as non-marked and labeled as VLAN104.  It also has the port configured in the same way 15 and 16.

In my ESXi host NIC2 is in the 16 port and NIC3 is in port 15.  I created a Standard vSwitch1 and created two groups of ports.  192.168.104.x group has a vlan id of the 104 and group vmware with no id vlan.  I guess that when I put a virtual machine in vmware port group I would get the IP 192.168.1.x what I do.

When I put a virtual machine in port 192.168.104.x I guess I should get an IP of 192.168.104.x, but I have not, I get a return address of loop group.

Any ideas what I am doing wrong?  I'm assuming that by creating the port group 192.168.104.x with id VLAN 104 that is the vlan native untagged for this option, which would then send the traffic through the port 15 or 16 depending on the tag VLAN104.  That would be so only send traffic out port 20 to port 4 of the RV220W which should serve as a DHCP server for the this response as 192.168.104.1.

Just at the moment where I think I have a handle on the VLAN, I'm wrong.

Thank you

I would recommend this:

Configure an access port on SG300, with no trunking

Configure it to VLAN 104

Place your desktop on this VLAN

Configure your desktop and virtual computer with a static IP address

Test if they have connectivity

This excludes the configuration of VMware and confirm that your trunk to the SG300 is operational.

Tags: VMware

Similar Questions

  • Problem with switch Cisco SG300

    Hi guys,.

    I have a problem with switch Cisco SG300-20. After the failure of the switch boots in a kind of mode. It requires

    MAC address and serial number to be entered manually for the device. I tried to find information on this mode, but without success.

    My question is: what is this mode and how to make the start switch in this mode?

    How can I turn on the switch in this mode on purpose if it happens again and I enter the wrong information by accident.

    Thank you

    Hi Aegx, this is a rare case where the switch basically forget his identity. Although the switch is recoverable, it is recommended the switch RMA.

    If you are certain that you have neither taken under warranty, all the information that is asked is on the bottom of the switch sticker. If the thumbnail is is not present you wouldn't able to do this is correct.

    In addition, if you make a typographical error, the switch will have undesirable failures that are permanent, such as the inability to update software.

  • VLAN a layer 2 switch, two WAP121 and RV110w

    Hello

    I try to configure the 4 VLANS in an office with 2 WAP121 and a RV110W, between the two is a switch POE from D-link DES-1210-28 P. I have a patch cable to the d-link to the router. How to configure the router so all VLAN light them well port on the router? Because soon I change the id VLANS on one of the SSID on the WAP121 I lose the connection to the internet and local servers for this SSID.

    the switch is on on the ports of the WAP121 and the RV110W connected to untagged.

    Best regards

    Villy

    You can call us at the 866-606-1866 in the Canada or the United States.  If you are in another country, you will find your number for local support from the link below.  Please have your CCOID (your Cisco.com user name) and the serial number of the RV110W of ability when you call.

    http://www.Cisco.com/c/en/us/support/Web/TSD-Cisco-small-business-suppor...

    Kind regards

    Mike.V

  • LACP hash between N3048 and CISCO SG300/SG200 + question Twinax attach direct cable

    Hello

    In my network I have deployed two new N3048 with 2 transceivers SPF + and SPF module back + as core switches are connected to other 3 switches from edge of N2048 using optical fiber and I reused my previous CISCO SG300 and SG200 goes to serve the other two boxes of my campus via the spine in copper.

    I have 4 copper cable which starts from the hub of the SG300 network and 2 the SG200 brass. I set up to have a redundant connection using 2 + 2 with SG300 and 1 + 1 with SG200 RSTP.

    So for the SG300 I re LAG + LACP to have two channels of the N3048s port, but now that a single cable is connected because I don't know what kind of LACP hash mode should I put on N3048 to have a compatible hash between Dell and Cisco switches.

    My N3048 have mode 7 (Advanced hash) as default but I guess that cisco models do not understand... so, what mode is the best for LACP work perfectly with small business cisco switches?

    I also received my twinax cables to connect my two N3048 via SPF + back modules... conhot can I plug the cables into the slots SPF + (already mounted) without turning off my basic switches?

    Thank you!

    See you soon

    Cables can be connected/disconnected, but I don't know if the real module SFP + for the rear of the N3000 is hot plug.

  • Cisco SG300 Switch - 28 p

    We have four switches Cisco SG300 - 28 p and a Linksys SRW2024 switch in a closet. I've been here for awhile and I'm finally getting the time to straighten out the mess of wires in this cabinet. I know that you have to connect the switches and at that time, they use one to 28 ports. Can I use the gigabit ports instead? Thanks for any help.

    No worries, glad it helped... Yes, the numbering of the latest ports bit is a bit strange

  • Cannot connect the switch Cisco Cisco SG300 - 28 p spend and traffic through VLANS

    Try to connect the Cisco SG300 - 28 p switch to another switch and proceed 2 VLANS between them.  Not doing any circuit.  If I connect a computer to the port on the SG300 - 28 p I can access the VLAN 2 and take a DHCP address. However, when I connect to another switch on the port and connect it to a port on another switch secondary I am unable to access VLAN 2 and pull an IP address.  I checked that the works of secondary switch (WS-C3560G-48PS-S) connected to the other 3500 s, but not this latest SG300 - 28 p.  Here's the configuration for both, I'm leaving areas that shouldn't matter and add if necessary.  Try to connect the SG300 - 28 p Port 26-WS-C3560 Port 1 port.  Once again, if I connect a computer to port 26 on the SG300 - 28 p I access the VLAN 2 as expected, but not when I connect to channel 2 on the secondary switch.

    Cisco SG300 - 28 p

    !
    interface vlan 1
    Internet name
    !
    interface vlan 2
    LAN name
    IP 172.20.5.11 255.255.0.0
    no ip address dhcp (this is the VLAN I'm moving)
    !
    interface vlan 3
    private name
    !
    interface vlan 4
    name of Nortel
    !
    interface vlan 101
    name Video_Project
    !
    interface gigabitethernet26
    Description VLAN2-ACCESS-CISCO3500
    switchport mode access
    switchport access vlan 2 (this goes to port 1 on the other Cisco 3500 switch to provide access 2 VLAN)

    Cisco 3500

    !
    interface Vlan1
    NATCO Internet description
    no ip address
    no ip route cache
    no ip mroute-cache
    !
    interface Vlan2
    NATCO LAN description
    IP 172.20.5.13 255.255.0.0
    no ip route cache
    no ip mroute-cache (this is the VLAN I'm moving)

    !
    interface Vlan3
    Description LHPrivate
    no ip address
    no ip route cache
    no ip mroute-cache
    !
    interface GigabitEthernet0/1
    switchport access vlan 2 (this is the port that I connect to the SG300 - 28 p)

    !
    interface GigabitEthernet0/2
    switchport access vlan 2 (this is the port I hang my computer to and trying to access VLAN 2 other switch)

    Hello

    Yes, STP is the problem here. As you can see on your release of the Cisco 3500 switch, port Gi0/1 is BKN (The FEW is a shortened form of "Broken").

    This is caused by an incompatibility of versions PLEASE used between the two switches. Small businesses (including series SG300) switches are use legacy STP or Rapid STP (your case), but uses templates to business (such as catalyst 3500) PVST + (each VLAN spanning tree version of STP).

    Two versions between group of switches are compatible only under certain conditions. Important condition is that the two switchports needs to use a VLAN 1, vlan access/native and not any other number VLAN.

    It is to make your communication work, you must:

    • disable the STP at least 3500 Cisco switch:

      • on overall global (Switch (config) # no vlan spanning tree 2)
      • or by the base interface (switch(config-if) # no vlan spanning tree 2)
    • change the configuration of your connection between two switches by following the path:
      • change the switchport trunk (trunk switchport mode) mode
      • do 1 VLAN as native vlan (vlan switchport trunk native 1)
      • Towing VLAN 2 as vlan tagged on that Stump (switchport trunk allow vlan add 2)

  • Cisco SG300-10 Cisco 6513 and Shoretel phones

    I have a new ShoreTel phone system will soon.  Configure a dhcp, including option 156 scope which is required for ShoreTel to obtain the configuration on ShoreTel phones and in order to get on the vlan correct voice on the phone.  I also created a new vlan 112 for the vlan voice.  When I plug directly into the Cisco 6513 Core switch, the phone starts fine, it gets its configuration and on the VLAN correct 112.

    We have a training room in which there will be a lot of users.  I ordered 6 Cisco small business 10port SG-300 POE switches for this training room.  I plugged the switch in a cable coming off the 6513 which is just an access port and in the vlan voice I created for phones shoretel VOIP:

    interface FastEthernet10/11
    switchport
    switchport mode access
    switchport voice vlan 112
    priority queue queue-limit 20
    WRR-queue random - detect min-threshold 1 30 40 50 60 70 80 90 100
    WRR-queue random - detect min-threshold 2 30 40 50 60 70 80 90 100
    WRR-queue random detection threshold min 3 30 40 50 60 70 80 90 100
    WRR-queue random detection max-threshold 1 70 80 90 100 100 100 100 100
    WRR-queue random detection max-threshold 2 70 80 90 100 100 100 100 100
    WRR-queue random detection threshold 3 70 80 90 100 100 100 100 100 max
    WRR-queue cos-map 1-3-1
    WRR-queue cos-1 6 4 map
    WRR-queue cos-map 2 6 0
    WRR-queue cos-map 2 8 2
    WRR-queue cos-map 3 1 7
    WRR-queue cos-map 3 8 3 6
    MLS qos trust dscp
    Storm-control broadcasts 20 h 00
    spanning tree portfast

    When I plug a phone directly into this cable the phone works very well.  When I plug a cheap cisco POE switch in I can get 3 phones works very well, but due to the amount of energy needed for this cheap a cisco switch it will give only 3 phones power.

    The real problem here is plug into small business cisco SG300-10port POE managed switch.  I thought I could just connect the switch to the port configured above right out of the box and plug in phones without a problem.  When I plug the switch and start plugging in ShoreTel phones, they do not start coming in and upward and actually had a few phones upward but then finally there is no tone and also later, they appear on the screen as a service not available.

    I have to configure a trunk port on a port on the SG300 and the Cisco 6513 for this to work?  Also I will need to VLAN configuration manually on the SG300.  Looks like that when I just plugged it in to the above configured the port on the SG300 it automatically create the vlan 112.

    Any help would be appreciated

    Thank you

    Dave

    Double post.

    Go HERE.

  • VLAN: ESXi <>- Cisco SG300

    Hey everybody,

    I always try to get the hang of networking with ESXi/vSphere...and I was little confused as I had a configuration problem.

    I have an Intel NUC5i5MYHE with 5.5 ESXi. As he has that one NETWORK card I am configuring a trunk so I can separate groups of ports within the host with the VLAN.

    Cisco SG300 has several VLANs (including: HAND = 10, LAB1 = 20, LAB2 = 30). * 1 is still active but VLAN native = 999 *.

    MAIN are all fair access Ports on VLAN10 (10UP).

    GE22 is a trunk with VLAN 10, 20 and 30 with label (10T, 20T, 30t, 999UP).

    A few groups of host ports ESXi has currently (simply called the VLAN I want installation and set on the VLANs)

    Also, I created the extra VMkernel port with VLAN10 just for wasting his time with (I can't access to this IP address, but after looking at VMK0, I think that I need to add static routes to the bridge?)

    V0 & VMkernel 0 = VLAN 0 (none)

    V10 & VMkernel 1 = VLAN 10

    V20 = VLAN 20

    So, with this configuration, I am unable to access the host via vSphere Client. However, if I put GE22 on SG300 to 10UP (10UP, 20T, 30t) I AM able to access... but is not what I want, right?

    To my knowledge... 0 (none) passes a VLAN while 4095 (all) does not take into account any VLAN tags completely, sending the frame as-is to the customers. (While I would let VMK0 0 (zero) as the correlates directly to my unique NIC physical, right?)

    So... my computer that connects with the vSphere Client Gets VLAN10 penetration tag (access). Switch then forwards Egress GE22 through the trunk to the ESXi host with a labeled VLAN10 framework.

    The framework should be accepted at the VMK0 whatever the tag VLAN and connect or if the frame belonged to another customer sent on the vSwitch... unless I'm confused here somewhere.

    Can someone enlighten me please?

    Thank you

    Basically, you have two options. If native/default of the physical switch port VLAN is set on the Management VLAN, then do not set a VLAN ID on the management VMkernel port group, otherwise the value the VLAN ID on the virtual side. Ultimately that a single point (the physical switch port, or the virtual port group) is responsible for the labelling/close the network frames.

    André

  • Cisco SG500 and VLAN

    OK so here is what I try to accomplish with 3 switch Cisco SG500-52. I created 4 VLANS on a SG500 I call my central office switch and it is set in routing mode. My VLAN is thus 400 (Infrastructure ESXI hosts, firewall, etc.), 401 (VoIP), 402 (users) and 403 (wireless). I have configured interfaces and the delivery without problem for me through my subnets and the communities of remote access through 3 offices.

    Where I'm not sure is on the SG500 I set as a L2 switch and my ESXi host are connected (I have 10 ports on one VLAN remote iSCSI traffic) is that I have to create VLAN 400 and mark those ports not marked? So should I use 1-2 ports and set them as ports and tag to my main switch 400?

    In the affirmative on the main switch I create junction ports and mark for the VLAN on the switch that could access the L2 switch? Is this also the case for the other SG500 I have who are all devices for 402 VLAN?

    I'm overloading it?

    Thanks in advance for any help.

    Hi Sdonnelly2,

    For vlan 402 and 400 on the uplink to your sg500 (L2) would be 400U and 402 T.

    Other interfaces for VoIP phones on vlan 401 would be configured to 401 T. This is if your phones expect traffic labeled, otherwise they would be configured to 401U.

    For Vlan 402 other interfaces would still be 402U. PC only contacted untagged traffic

    For 403 Vlan wireless uplink access point must be configured (400U, 401, 402, 403T)

    It is perhaps more information than expected, but I hope that I have answered other questions you had.

  • connection of switches cisco and hp with gbic

    I have a new Cisco 2960 x and an existing HP 2910al. I am OK with the set up, I have the hp interface and Cisco all the time with copper but this is the first that I had with fiber. I know that Cisco switch will a Cisco gbic (can move only with service not taken into charge-transmitter/receiver) and HP will want a Gbic hp (new Hp operating system only works with HP Gbic).

    So here's the question, Cisco Gbic and Hp Gbic of interconnection? I guess Yes, but want to ask before you buy and know that they don't.

    As long as they are of the same wavelength (like SR to LR to LR or SR) Yes they do.

  • Is it possible to perform the following vmps on cisco sg500 and SG300?

    Hello guys,.

    I hope that all is well. I have a question that I'm not sure about that, the Cisco SG300-500 range can support VMPS.

    Kind regards

    Marcel Smal.

    Not that I know, this feature is generally available in the high range catalyst switches

    You can check if through emulators online for these platforms

    https://supportforums.Cisco.com/community/911/Cisco-small-business-onlin...

    or the admin guides

    http://www.Cisco.com/c/dam/en/us/TD/docs/switches/LAN/CSBMs/Sx500/ADMINI...

  • Switches Cisco stackable, 500 and the consolidation of NETWORK cards

    Am looking using the stacking and NIC teaming to create redunancy for user access to servers. What I think is becoming 2 switches SG500-28 and set them up in a stack which appears as a logical switch. Now on the servers I have re 2 network cards to be a team so that they appear as a logical interface 1, perferably in an active/active configuration using LACP. In this team NIC take 1 member of the team to either switch B, so that each Member of the team is on separate switches.

    Givent the scenario:

    (1) who will work with the switches of the 500 series? The switches is that their price point is perfect for my client.

    (2) in addition, the connection of the battery will be there also needs to be a GAP between the switches or the connection of the battery is also data traffic?

    Hi Robert,.

    (1) I don't see any reason that this would not work as desired. There are the requirements by doing a SHIFT but being on the same physical switch isn't a.

    (2) with the switch of SG500 line, you have a few options for up/down the link between the switches to the battery, it depends on the model. Each of them supports 1 G up and down links with copper. The switches are then divided and support 5G or 10G mini-gbic down links. There is not currently an options trolling battery links.

    Let me know if that answers your questions!

  • Connection Cisco SG300-10-Core Cisco 6513 for ShoreTel phones

    I have a new ShoreTel phone system will soon.  Configure a dhcp, including option 156 scope which is required for ShoreTel to obtain the configuration on ShoreTel phones and in order to get on the vlan correct voice on the phone.  I also created a new vlan 112 for the vlan voice.  When I plug directly into the Cisco 6513 Core switch, the phone starts fine, it gets its configuration and on the VLAN correct 112.

    We have a training room in which there will be a lot of users.  I ordered 6 Cisco small business 10port SG-300 POE switches for this training room.  I plugged the switch in a cable coming off the 6513 which is just an access port and in the vlan voice I created for phones shoretel VOIP:

    interface FastEthernet10/11
    switchport
    switchport mode access
    switchport voice vlan 112
    priority queue queue-limit 20
    WRR-queue random - detect min-threshold 1 30 40 50 60 70 80 90 100
    WRR-queue random - detect min-threshold 2 30 40 50 60 70 80 90 100
    WRR-queue random detection threshold min 3 30 40 50 60 70 80 90 100
    WRR-queue random detection max-threshold 1 70 80 90 100 100 100 100 100
    WRR-queue random detection max-threshold 2 70 80 90 100 100 100 100 100
    WRR-queue random detection threshold 3 70 80 90 100 100 100 100 100 max
    WRR-queue cos-map 1-3-1
    WRR-queue cos-1 6 4 map
    WRR-queue cos-map 2 6 0
    WRR-queue cos-map 2 8 2
    WRR-queue cos-map 3 1 7
    WRR-queue cos-map 3 8 3 6
    MLS qos trust dscp
    Storm-control broadcasts 20 h 00
    spanning tree portfast

    When I plug a phone directly into this cable the phone works very well.  When I plug a cheap cisco POE switch in I can get 3 phones works very well, but due to the amount of energy needed for this cheap a cisco switch it will give only 3 phones power.

    The real problem here is plug into small business cisco SG300-10port POE managed switch.  I thought I could just connect the switch to the port configured above right out of the box and plug in phones without a problem.  When I plug the switch and start plugging in ShoreTel phones, they do not start coming in and upward and actually had a few phones upward but then finally there is no tone and also later, they appear on the screen as a service not available.

    I have to configure a trunk port on a port on the SG300 and the Cisco 6513 for this to work?  Also I will need to VLAN configuration manually on the SG300.  Looks like that when I just plugged it in to the above configured the port on the SG300 it automatically create the vlan 112.

    Any help would be appreciated

    Thank you

    Dave

    Deleted

  • Cisco SG300-52MP connectivity problem

    Hello

    I have Cisco SG300-52MP pass. Recently, unit has rebooted itself send message to remote logs server after startup.

    10 Nov 09:12:51 % F-INVALID-PARAM-BOX switch: function BOXG_poe_i2c_read_mem_byte: param invalid recv_byte_PTR value = 0 * FATAL ERROR * task Reporting: HCPT.  Software version: 1.2.9.44 (date time 30-Sep-2012 01:33:07) 0x16a7a4 0x1671e4 0x6596d0 0x433c04 0x4390d0 0x4392b0 0x8f8c84 0 x 907320 0x8e92cc 0x8e96e4 0x8e98b4 0x8ec8b8 0x8ed9c4 0x8e2cb8 0x8f0990 0x8c9d64 0x8ca8c4 0x8b6674 0x8b71e8 0x121d9c

    I decided to update firmware as possible preventative action to prevent this problem from occurring in the future. I did it and now the switch runs with 1.3.0.62 firmware version.

    Now, I got a different kind of problem with this switch (just after the upgrade). Periodically, the switch management interface becomes meaningless. I have ping test and here is the output of the test when the problem occurs:

    64 bytes of switch (192.168.1.1): icmp_seq = 3567 ttl = 63 times = 1.09 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3568 ttl = 63 times = 1.12 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3569 ttl = 63 times = 1.06 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3570 ttl = 63 times = 1,11 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3571 ttl = 63 time = 29538 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3572 ttl = 63 time = 28539 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3573 ttl = 63 times = 27539 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3574 ttl = 63 = ms 26540 times

    64 bytes of switch (192.168.1.1): icmp_seq = 3575 ttl = 63 times = 25540 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3576 ttl = 63 times = 24541 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3577 ttl = 63 times = 23542 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3578 ttl = 63 times = 22542 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3579 ttl = 63 times = 21542 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3580 ttl = 63 time = 20543 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3581 ttl = 63 times = 19543 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3582 ttl = 63 times = 18544 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3583 ttl = 63 times = 17545 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3584 ttl = 63 times = 16545 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3585 ttl = 63 times = 15545 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3586 ttl = 63 times = 14546 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3587 ttl = 63 = ms 13547 times

    64 bytes of switch (192.168.1.1): icmp_seq = 3588 ttl = 63 = ms 12547 times

    64 bytes of switch (192.168.1.1): icmp_seq = 3589 ttl = 63 times = 11548 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3590 ttl = 63 = ms 10548 times

    64 bytes of switch (192.168.1.1): icmp_seq = 3591 ttl = 63 = ms 9549 times

    64 bytes of switch (192.168.1.1): icmp_seq = 3592 ttl = 63 = ms 8549 times

    64 bytes of switch (192.168.1.1): icmp_seq = 3593 ttl = 63 time = 7550 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3594 ttl = 63 times = 6550 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3595 ttl = 63 = ms 5551 times

    64 bytes of switch (192.168.1.1): icmp_seq = 3596 ttl = 63 = ms 4551 times

    64 bytes of switch (192.168.1.1): icmp_seq = 3597 ttl = 63 times = 3552 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3598 ttl = 63 times = 2552 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3601 ttl = 63 times = 35.4 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3602 ttl = 63 times = 1,11 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3603 ttl = 63 times = 1.04 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3604 ttl = 63 times = 1,11 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3605 ttl = 63 times = 1.07 ms

    64 bytes of switch (192.168.1.1): icmp_seq = 3606 ttl = 63 times = 1,10 ms

    During this time all the facilities connected (30 active ports) works well without network delays, so the problem is only shown for the management interface.

    Someone could advice me why this is happening and what can I do to solve it?

    Fascinating, this means that it is perhaps related-

    https://supportforums.Cisco.com/thread/2221597

    Edit-

    It is a known for IPV6 bug where the switch management is hampering in an IPV6 environment. So I suspect your problems develops more than IPV6.

    CSCuh50141

    -Tom
    Please mark replied messages useful

  • Cisco SG300 / ASA 5505 intervlan routing problem

    Dear all

    I have a problem with the configuration correctly sg300 layer 3 behind the ASA 5505 switch (incl. license more security)

    The configuration is the following:

    CISCO SG300 is configured as a layer 3 switch

    VLAN native 1: 192.168.1.254, default route ip address (inside interface ASA 192.168.1.1)

    VLAN defined additional switch

    VLAN 100 with 192.168.100.0/24, default gateway 192.168.100.254

    VLAN 110 with 192.168.110.0/24, default gateway 192.168.110.254

    VLAN 120 with 172.16.0.0/16, default gateway 172.16.10.254

    Of the VLANS (100,110,120) different, I am able to connect to all devices on the other VIRTUAL local networks (with the exception of Native VLAN 1; is not the ping requests)

    From the switch cli I can ping my firewall (192.168.1.1) and all the other gateways of VLANs and vlan (VLAN1, 100, 110, 120) devices

    Asa cli I can only ping my switch (192.168.1.254) port, but no other devices in other VLAN

    My question is this. What should I change or installation in the switch configuration or asa so that other VLANs to access the Internet through the ASA. I will not use the ASA as intervlan routing device, because the switch does this for me

    I tried to change the asa int e0/1 in trunkport (uplink port switch also), to enable all the VLANS, but as soon as I do that, I can not ping 192.168.1.254 ASA cli more.

    Any help is greatly appreciated

    Concerning

    Edwin

    Hi Edwin, because the switch is layer 3, the only necessary behavior is to ensure that default gateways to the computer are set on the SVI interface connection to the switch to make sure that the switch is transfer traffic wished to the ASA.

    The configuration between the ASA and the switch must stay true by dot1q, such as the vlan all other, unidentified native VLAN tagged.

    Also, if I'm not wrong, on the SAA you must set the security level of the port to 100.

    -Tom
    Please evaluate the useful messages

Maybe you are looking for

  • Satellite L40 - proceedings of BIOS rewrite

    Toshiba Satellite L40-14B (catalogue number: PSL4CE - 004005G 3) I got my laptop for Windows XP (from Vista) and I wanted to update BIOS version for XP Toshiba (5.50). I did everything right but still 2 seconds after you click the .bat file to start

  • my laptop stays quite often cut only about 20 minutes

    MY LAPTOP GUARD CUTTING ON ME ONLY STAYS ON ABOUT 20 MINUTES

  • StarCraft 2 is incompatible?

    If Starcraft 2 now does not work on my computer after a few updates... He repeatedly through all process of installing a patch, but just restarts the program, Windows 7 x 64 says that the program is not compatible and I can not understand how to fix

  • On the live webcast on HTML5

    Hello I want to see the Webcasr told BlackBerry webcast and comprehensive. It's "Webcast: study of the use of bbUI for the construction of a BlackBerry UI with HTML5 '.   But therer is no link where I can see the webcast. Thanks for giving the link t

  • Dual Boot Windows?

    I have a dual boot Windows 7 and Windows 8. I was wondering if I could increase the size of the space of hard disk for Windows 8? There are 333 GB of space available for Windows 7 and 20.8 GB available for Windows 8. I would like to know if its possi