Switches, Hubs, and Modems
1748237 Members
3654 Online
108759 Solutions
New Discussion юеВ

Re: Vlans on 2510G switch

 
Diego A Briceno
New Member

Vlans on 2510G switch

Thanks in advance for your help

I have a 2510G with ports on vlans 1, 100 , 101 and 102

I connected a firewall into vlan100 (outside) and from the firewall I can ping a pc connected on vlan102 ports.

I want to be able to access and manage the switch from any internal vlan.I understand switch management default vlan is vlan1.

Then I choose ports 35 and 36 tagged them with vlans 101, 102 and vlan1 so once I pass the firewall I'd be able to manage the switch.

Also I've tried 35-36 tagged on vlan 101 and 102 and untagged those for vlan 1 but still not working.

Thanks for your help.
3 REPLIES 3
Pieter 't Hart
Honored Contributor

Re: Vlans on 2510G switch

>>> Then I choose ports 35 and 36 tagged them with vlans 101, 102 and vlan1 so once I pass the firewall I'd be able to manage the switch. <<<

Do you mean the firewall does the routing between vlan's?
And the switch only has a management adres on vlan1?


- if ports 35 and 36 for a trunk connected to the firewall and are tagged for vlans 101, 102 and vlan1, on the firewall you need also all vlan's tagged.
The firewall needs to be configured same like switchport.
either with physiscal interfaces that connect to port35-36 or with subinterfaces tagged for each vlan.


Diego A Briceno
New Member

Re: Vlans on 2510G switch

Thanks for your reply Pier

Do you mean the firewall does the routing between vlan's?
-->yes
And the switch only has a management adres on vlan1?
-->yes


- if ports 35 and 36 for a trunk connected to the firewall and are tagged for vlans 101, 102 and vlan1, on the firewall you need also all vlan's tagged.
-->Thanks i will give it a try
The firewall needs to be configured same like switchport.

-->I will update later today

Diego.

Diego A Briceno
New Member

Re: Vlans on 2510G switch

Thanks for your help

I think something else is playing here... to clarify my configuration: switch with untagged ports as follows:
1-10 vlan1 (default)
13-22 vlan100 connected to the outside ASA5510 5510 interface
25-34 vlan 101 internal vlan ASA subinterface 2.101 on vlan 101 connected
37-45 vlan 102 internal vlan, ASA subinterface 2.202 on vlan 102, connected

35-36 are tagged for vlans: 1, 101 and 102

Then logged into the ASA i can ping a pc connected on switch ports 37-45 but i can't ping/manage switch ip. only way to manage the switch is through vlan1 but dont know if they need to be untagged packets...

Thanks