Unsolved
This post is more than 5 years old
2 Intern
•
38 Posts
0
55994
September 6th, 2012 12:00
Created a new vLAN but no internet
Hello Everyone;
- I have a Sonicwall firewall configured with 3 Vlan interfaces (20, 30 and 40) and corresponding vlans and a trunk port on the switch.
On SonicWall
vlan 10 10.0.10.254/24
vlan 20 10.0.20.254/24
vlan 30 10.0.30.254/24
On the switch 6224
vlan 10 10.0.10.0/24
vlan 20 10.0.20.0/24
vlan 30 10.0.30.0/24
- From the switch I'm able to ping all Vlans IPs that were configured on the firewall.
10.0.10.254, 10.0.20.254, & 10.0.30.254,
- I can assign IPs on VMs on each vlan and able to ping the gateway interface except I don't get internet access.
- I have IP route 0.0.0.0 0.0.0.0 10.0.20.254 (vlan 20) works fine for 20 subnet, but all other subnets does not have access to the internet.
If I change this to 0.0.0.0 0.0.0.0 10.0.10.254 (vlan 1010) will work fine but all other vlans will not have internet access.
- If I change the gateway on the VM from 10.0.20.1 to 10.0.20.254 it works fine (but this will be router on stick) not a L3 routing.
I would love to her your input on this as I don't know if it;s a firewall or switch issue.
Thanks
Adam
akamali
2 Intern
•
38 Posts
0
September 6th, 2012 14:00
Okay I have done the above stated suggestion with no luck:
Here is the config:
Vlan 1010 ip address 10.0.10.1 255.255.255.0
Vlan 1026 ip address 10.0.20.1 255.255.255.0
Vlan 1030 Not routable
Vlan 1050 172.10.10.1 255.255.255.0
console#show running-config
!Current Configuration:
!System Description "PowerConnect 6224, 3.3.3.3, VxWorks 6.5"
!System Software Version 3.3.3.3
!Cut-through mode is configured as disabled
!
configure
vlan database
vlan 1010,1026,1030,1050
vlan routing 1010 1
vlan routing 1026 2
vlan routing 1 3
vlan routing 1050 4
exit
stack
member 1 1
member 2 1
exit
switch 1 priority 12
ip address 10.10.10.1 255.255.255.0
ip default-gateway 10.10.10.254
ip routing
ip route 10.0.10.0 255.255.255.0 10.0.10.254
ip route 10.0.20.0 255.255.255.0 10.0.20.254
ip route 172.10.10.0 255.255.255.0 172.10.10.254
interface vlan 1
routing
exit
interface vlan 1010
name "management-P5-P6-P21-P23"
routing
ip address 10.0.10.1 255.255.255.0
exit
interface vlan 1026
name "LAN-NT"
routing
ip address 10.0.20.1 255.255.255.0
exit
interface vlan 1030
name "Public-Network-P13-P18"
exit
interface vlan 1050
name "DMZ"
routing
ip address 172.10.10.1 255.255.255.0
exit
username "admin" password e19d5cd5af0378da05f63f891c7467af level 15 encrypted
!
interface ethernet 1/g1
switchport mode trunk
switchport trunk allowed vlan add 1010,1026
exit
!
interface ethernet 1/g5
switchport access vlan 1010
exit
!
interface ethernet 1/g6
switchport access vlan 1010
exit
!
interface ethernet 1/g7
switchport mode trunk
switchport trunk allowed vlan add 1026,1030
exit
!
interface ethernet 1/g8
switchport mode trunk
switchport trunk allowed vlan add 1026,1030
exit
!
interface ethernet 1/g10
switchport access vlan 1030
exit
!
interface ethernet 1/g13
switchport access vlan 1026
exit
!
interface ethernet 1/g21
switchport access vlan 1010
exit
!
interface ethernet 1/g22
switchport access vlan 1010
exit
!
interface ethernet 1/g23
switchport access vlan 1010
exit
!
interface ethernet 1/g24
switchport mode trunk
switchport trunk allowed vlan add 1010,1026,1030,1050
exit