HPE Community
Switches, Hubs, and Modems
1752433 Members
5899 Online
108788 Solutions
New Discussion юеВ

Re: Procurve 2848 vlan question

 
SOLVED
Go to solution
Antonio V
New Member

тАО10-16-2006 11:16 AM

тАО10-16-2006 11:16 AM

Procurve 2848 vlan question

Hello. I'm a little new to this. I currently use a 2848 switch for all my servers. This switch is IP 10.150.1.44. Default gateway is a Cisco 2600 router 10.150.1.1 and a Cisco PIX515 firewall sits in front of that with internal IP 10.150.1.254. Everything works fine with this setup. All static routes in place.

I am trying to setup a new VLAN on ports 1-3 on the 2848 for a test environment. I have created this VLAN2 and given it an IP of 10.251.3.1. The ports have been assigned to this VLAN as untagged and the default VLAN is the only other VLAN present.

A new server connected to port 1 and assigned IP 10.251.3.40 with gateway 10.251.3.1 cannot access any other systems on the network or access the internet. My Cisco router does have a default route of 0.0.0.0 0.0.0.0 10.150.1.254, but I wasn't sure if I needed to added a route for the 10.251.3.0 as I thought the switch might handle all that. Also not sure if I need to adjust the PIX firewall.

Any help is appreciated.
Thanks!
0 Kudos
3 REPLIES 3
Mohieddin Kharnoub
Honored Contributor

тАО10-16-2006 03:45 PM

тАО10-16-2006 03:45 PM

Solution

Re: Procurve 2848 vlan question

Hi

Where you are doing routing between Vlans ? on the 2800 or on the Cisco router ?

If you enabled the 2800 ip routing then you should be able to route between these 2 Vlans.

But if you have the Cisco router as default gateway for the 2800 switch then you have a Router on Stick scenario.
In this case you should tag the ports goes to the Cisco router with Vlan2, then on the Cisco router create to subinterfaces on the same ethernet interface you conenct to the switch and give each one an IP in the same Vlan range.

The better scenario is to run IP Routing on the 2800 switch, then just add one static route for Vlan2 on the cisco router poiting to Vlan1 ip address on the routnig switch.

Good Luck !!!
Science for Everyone
OLARU Dan
Trusted Contributor

тАО10-16-2006 10:43 PM

тАО10-16-2006 10:43 PM

Re: Procurve 2848 vlan question

Just out of curiosity: what is the IP address and subnet mask of the 2600 router interface that connects to the PIX inside interface?
0 Kudos
Antonio V
New Member

тАО10-17-2006 10:04 AM

тАО10-17-2006 10:04 AM

Re: Procurve 2848 vlan question

Thanks for your help. I think I may have had it working before but I gave up too soon. I set the gateway on the switch to itself and enabled IP routing. I can get to both networks on the switch. BTW...the 2600 router IP on the internal interface that connects to the firewall is the same 10.150.1.1

One thing, I still can't get out to the internet from the server in VLAN2 with a 10.251.3.40 address. however, a look at my syslog from my firewall shows that IP is being blocked. Look like I just need to adjust some rules on the firewall to allow the traffic.

Again, thanks for your help!
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.