VLAN help

Notice: Page may contain affiliate links for which we may earn a small commission through services like Amazon Affiliates or Skimlinks.

uberguru

Member
Jun 7, 2013
319
18
18
I have the Cisco SG300 switch...basically followed the steps here How to setup VLANs on a Cisco SG 300-20 Managed Switch » Malpass' Technology Blog but the problem is after i created the vlan...now when i connected a laptop to the ports tagged with the vlan...i cannot connect to the network of the vlan i created.


That is one part missing from this link How to setup VLANs on a Cisco SG 300-20 Managed Switch » Malpass' Technology Blog no mention of how to test the network connection of the device connected to the port tagged with the vlan created.

The main network controlled by the router is 192.168.1.1 network and i made the vlan network 192.168.10.1..and tagged the port to the vlan..but when i connect a device..no network connection on the device.

Is there something i am missing?

Also will my router be the DHCP for the devices connected to the vlans created? What will give the devices connected to the vlan ports their ip addresses? I think that is where i am lost at the moment
 

nitrobass24

Moderator
Dec 26, 2010
1,087
131
63
TX
You only want a tagged/trunk port when you are extending that vlan to another switch or virtual infrastructure(vswitch). If you are connecting to a PC/server you will want an untagged/access port.
 

uberguru

Member
Jun 7, 2013
319
18
18
You only want a tagged/trunk port when you are extending that vlan to another switch or virtual infrastructure(vswitch). If you are connecting to a PC/server you will want an untagged/access port.
SWITCH:

On Cisco SG300 switch
port 10 connect to router
port 5 connect to laptop ports 2 and 5 tagged to vlan 2)
port 1 connect to my desktop, where i configure the switch



VLAN 1 Static 192.168.1.35 255.255.255.0 Valid
VLAN 2 Static 192.168.10.1 255.255.255.0 Valid


IPv4 Static Routing Table
Destination IP Prefix Prefix Length Route Type Next Hop Router IP Address Route Owner Metric Administrative Distance
0.0.0.0 0 Default 192.168.1.1 Default 1 1
192.168.1.0 24 Local Directly Connected
192.168.10.0 24 Local Directly Connected


Port VLAN Membership Table
Filter:
Interface Type equals to
Go
Interface Mode Administrative VLANs Operational VLANs LAG
GE1 Trunk 1UP 1UP
GE2 Access 2UP 2UP
GE3 Trunk 1UP 1UP
GE4 Trunk 1UP 1UP
GE5 Access 2UP 2UP
GE6 Trunk 1UP 1UP
GE7 Trunk 1UP 1UP
GE8 Trunk 1UP 1UP
GE9 Trunk 1UP 1UP
GE10 Trunk 1UP 1UP



ROUTER:

Static Routes

# Active Name Destination Gateway
1 Yes VLAN 2 192.168.10.0 192.168.1.35

What i want is have a separate network vlan. So i can plug in my laptop in vlan 2 (tagged ports 2 and 5 from above) and be able to have ip 192.168.10.5 for example and browse the internet.

So what am i doing wrong here?
Also what gives the devices connected to vlan ports tagged their ip addresses?
 
Last edited:

awedio

Active Member
Feb 24, 2012
776
225
43
Do your desktop & laptop NIC support VLANs?

Does your router support VLANs, ie, can you tag the router ports?
 
Last edited:

uberguru

Member
Jun 7, 2013
319
18
18
Last edited:

nitrobass24

Moderator
Dec 26, 2010
1,087
131
63
TX
If you want a device to connect to a vlan it must be untagged on that port.

If you want your router on Vlan2 untag port 10 and set the PVID to 2.

If you want your laptop in vlan2 untag port 2 and set the PVID to 2.
 

uberguru

Member
Jun 7, 2013
319
18
18
If you want a device to connect to a vlan it must be untagged on that port.

If you want your router on Vlan2 untag port 10 and set the PVID to 2.

If you want your laptop in vlan2 untag port 2 and set the PVID to 2.
If you look at this table below

Port VLAN Membership Table
Filter:
Interface Type equals to
Go
Interface Mode Administrative VLANs Operational VLANs LAG
GE1 Trunk 1UP 1UP
GE2 Access 2UP 2UP
GE3 Trunk 1UP 1UP
GE4 Trunk 1UP 1UP
GE5 Access 2UP 2UP
GE6 Trunk 1UP 1UP
GE7 Trunk 1UP 1UP
GE8 Trunk 1UP 1UP
GE9 Trunk 1UP 1UP
GE10 Trunk 1UP 1UP


Only ports 2 and 5 are tagged vlan 2. The router is connected to port 10 and desktop to port 1. I want to connect any other device on port 2 or 5 and have the devices be on the network set for the vlan which is 192.168.10.0/24 network.
So what do i need to add now. Every other port aside 2 and 5 are all on default vlan 1. Network created by router (which is dhcp) is 192.168.1.0/24
 
Last edited:

uberguru

Member
Jun 7, 2013
319
18
18
If you want a device to connect to a vlan it must be untagged on that port.

If you want your router on Vlan2 untag port 10 and set the PVID to 2.

If you want your laptop in vlan2 untag port 2 and set the PVID to 2.
I have untaged ports 2 and 5 which are the only ones on vlan 2...when i connect a device there like a laptop..i can't get internet connection...why is this?
How do i fix this?

Thanks
 

nitrobass24

Moderator
Dec 26, 2010
1,087
131
63
TX
Your router is not on that vlan so unless you put inter Vlan routing in place you will not be able to route outside of vlan2.

Also do you have DHCp on vlan2? Or are you setting static IPs?
 

Lost-Benji

Member
Jan 21, 2013
424
23
18
The arse end of the planet
I am still failing to see why this is needed....

If the router can supply two DHCP servers and subnets as well as tagging then feed it to a TRUNK with both VLANs on it, then the switch will pass traffic the the associated ports that are in ACCESS mode with the VLAN.
 

nitrobass24

Moderator
Dec 26, 2010
1,087
131
63
TX
Would also be true assuming his router supports vlans and multiple dhcp servers but he hasn't told us what he has.
 

uberguru

Member
Jun 7, 2013
319
18
18
Your router is not on that vlan so unless you put inter Vlan routing in place you will not be able to route outside of vlan2.

Also do you have DHCp on vlan2? Or are you setting static IPs?

Still having issues with this.

Ok lets do this.

I want to setup a different VLAn apart fromt he default VLAN 1. All i want is to create a different network and be able to access the internet from that VLAN 2 network. That is all for now..I don't care about routing from VLAn to VLAN..i just want to create a VLAN for a different network and be able to browse internet in that network.


What do i need to do to get this.


Right now.
What i have done

#1. Created VLAN 2
#2. Created IP interface for VLAN 2 to use 10.10.1.1 network

#####
IPv4 Interface
IPv4 Interface Table
Interface IP Address Type IP Address Mask Status
VLAN 2 Static 10.10.1.1 255.255.255.0 Valid
VLAN 1 Static 192.168.1.35 255.255.255.0 Valid

#####

#3. Untagged port 5 for VLAN 2


#####

Port to VLAN
Filter:
VLAN ID equals to 2 AND Interface Type equals to Port Go
Interface GE1 GE2 GE3 GE4 GE5 GE6 GE7 GE8 GE9 GE10
Access
Trunk
General
Customer
Forbidden
Excluded x x x x x x x x x
Tagged
Untagged x
Multicast TV VLAN
PVID

####


#4. Set port 5 interface VLAn mode to access

#####
Interface Settings
Interface Settings Table
Filter: Interface Type equals to

Go
Entry No. Interface Interface
VLAN Mode Administrative
PVID Frame
Type Ingress
Filtering
1 GE1 Trunk 1 Admit All Enabled
2 GE2 Trunk 1 Admit All Enabled
3 GE3 Trunk 1 Admit All Enabled
4 GE4 Trunk 1 Admit All Enabled
5 GE5 Access 2 Admit All Enabled
6 GE6 Trunk 1 Admit All Enabled
7 GE7 Trunk 1 Admit All Enabled
8 GE8 Trunk 1 Admit All Enabled
9 GE9 Trunk 1 Admit All Enabled
10 GE10 Trunk 1 Admit All Enabled

#####




NOTE: Router is connected to port 10 and desktop computer am setting the configs on and typing this right now is on port 1

Now what else do i need for me to be able to plug in a laptop on port 5 and be able to get ip address on 10.10.1.0/24 network? Also what will be DHCP for just the 10.10.0.0/24 network? Will the DHCP be the router or the switch?

Hoep i am clear on what i have done so far and where i am at
Thanks.
 
Last edited: