Ok so after communicating with the ISP they informed me that the public IP address's were on VLAN 2 and that that my port shouldnt need to be on trunk mode and that I should try without first as there switch should appear transparent.
I have created VLAN 2 on the 3524 and placed e1 and e2 ports into access mode on VLAN 2
I have also placed the connection from the Cisco switch (ISP) into e23 on the 3524 and assigned it to VLAN 2 with Trunk Mode
I can now get internet access to and from the servers on VLAN 2
I'm a bit stuck with the next bit
"Place the 192.168.0.x traffic all into the PVID which by default is VLAN 1." - How do I do this via the Web GUI ? your previous example was extremely helpful
From my understanding we have placed the servers onto VLAN 2 which is linked to VLAN 2 on the ISP switch and hence can access the internet , and the statement above refers to placing Internal IP address's (192.168.0.x) on VLAN 1 . How do the devices on VLAN 1 access the internet via the e23 if its on VLAN 2 , have I picked this up wrong ?
If the above is correct where Private IP's are on VLAN 1 and Public IP's are on VLAN 2 how could a server with 1 NIC be be connected to be both VLANS if VLAN connection is allocated per port , can I assign a port to be on multiple VLANS ?
That makes sense however I'm only able to get this partially functional, Only devices on VLAN 2 can access the Internet. Devices on VLAN 1 can connect to each other but not the Internet.
My current setup so far is :
ISP Cisco Switch
Port 6 currently in Trunked mode
VLAN 2
DELL 3524
e23 : set as a trunked port on VPID 2 set as untagged port - (connection from isp)
e1: set as access port on VPID2 set as untagged port - (server 1)
e7: set as access port on VPID 1 set as untagged port (workstation 1)
from workstation 1 I am unable to access the internet.
Workstation 1 is a windows machine and on the machine I configured the following
Ip = 192.168.0.45
subnet: 255.255.255.0
default gw: 192.168.0.1
Server one config
ip:222.222.222.67
subnet: 254.254.254.x
default gw: 212.x.x.x
Am I doing something wrong ?
I have
1.) Created VLAN 2 and placed e23(link to ISP switch) and e1 (server1) on that VLAN (VPID 2) ports are set as untagged , changing them to tagged stops server from being able to connect to internet.
2.) Placed e23(link to ISP switch) into trunk mode
3.) All other devices are automatically on VPID 1 and are also set to unatgged so should work but they cant connect to the internet
Server can connect fine to network and internet but workstations cannot connect to internet , any help would be much appreciated
If possible I'd like to avoid having additional software/services on our servers as they are used for development and testing of software. I would much prefer to add a piece a hardware to the setup , Could you recommend a router with built in firewall that would be suitable for the setup I'm trying to achieve , bearing in mind the scenario of multiple incoming ip's. I hope I'm not asking the impossible but I'm really looking do this on a budget and would preferably be able to pick up said piece of hardware used device of ebay. Ideally the cheapest device that will do what required.I should also mention that we may be looking to use this setup for voip in the next 3-6 months so if the router could work with the 3524's VOIPLAN features that would be idela.
elrossco22
5 Posts
0
January 22nd, 2014 09:00
Thanks Daniel,
Ok so after communicating with the ISP they informed me that the public IP address's were on VLAN 2 and that that my port shouldnt need to be on trunk mode and that I should try without first as there switch should appear transparent.
I have created VLAN 2 on the 3524 and placed e1 and e2 ports into access mode on VLAN 2
I have also placed the connection from the Cisco switch (ISP) into e23 on the 3524 and assigned it to VLAN 2 with Trunk Mode
I can now get internet access to and from the servers on VLAN 2
I'm a bit stuck with the next bit
"Place the 192.168.0.x traffic all into the PVID which by default is VLAN 1." - How do I do this via the Web GUI ? your previous example was extremely helpful
From my understanding we have placed the servers onto VLAN 2 which is linked to VLAN 2 on the ISP switch and hence can access the internet , and the statement above refers to placing Internal IP address's (192.168.0.x) on VLAN 1 . How do the devices on VLAN 1 access the internet via the e23 if its on VLAN 2 , have I picked this up wrong ?
If the above is correct where Private IP's are on VLAN 1 and Public IP's are on VLAN 2 how could a server with 1 NIC be be connected to be both VLANS if VLAN connection is allocated per port , can I assign a port to be on multiple VLANS ?
Many Thanks,
Ross
elrossco22
5 Posts
0
January 23rd, 2014 11:00
Thanks Daniel,
That makes sense however I'm only able to get this partially functional, Only devices on VLAN 2 can access the Internet. Devices on VLAN 1 can connect to each other but not the Internet.
My current setup so far is :
ISP Cisco Switch
Port 6 currently in Trunked mode
VLAN 2
DELL 3524
e23 : set as a trunked port on VPID 2 set as untagged port - (connection from isp)
e1: set as access port on VPID2 set as untagged port - (server 1)
e7: set as access port on VPID 1 set as untagged port (workstation 1)
from workstation 1 I am unable to access the internet.
Workstation 1 is a windows machine and on the machine I configured the following
Ip = 192.168.0.45
subnet: 255.255.255.0
default gw: 192.168.0.1
Server one config
ip:222.222.222.67
subnet: 254.254.254.x
default gw: 212.x.x.x
Am I doing something wrong ?
I have
1.) Created VLAN 2 and placed e23(link to ISP switch) and e1 (server1) on that VLAN (VPID 2) ports are set as untagged , changing them to tagged stops server from being able to connect to internet.
2.) Placed e23(link to ISP switch) into trunk mode
3.) All other devices are automatically on VPID 1 and are also set to unatgged so should work but they cant connect to the internet
Server can connect fine to network and internet but workstations cannot connect to internet , any help would be much appreciated
Regards,
Ross
elrossco22
5 Posts
0
January 23rd, 2014 12:00
Hi Daniel,
Changing port 23 to access mode for VLAN 2 still allows the servers to make contact with the internet. The servers are Linux(CentOS).
Thanks,
Ross
elrossco22
5 Posts
0
January 23rd, 2014 13:00
Hi Daniel ,
If possible I'd like to avoid having additional software/services on our servers as they are used for development and testing of software. I would much prefer to add a piece a hardware to the setup , Could you recommend a router with built in firewall that would be suitable for the setup I'm trying to achieve , bearing in mind the scenario of multiple incoming ip's. I hope I'm not asking the impossible but I'm really looking do this on a budget and would preferably be able to pick up said piece of hardware used device of ebay. Ideally the cheapest device that will do what required.I should also mention that we may be looking to use this setup for voip in the next 3-6 months so if the router could work with the 3524's VOIPLAN features that would be idela.
Regards,
Ross