Hello All,
I have a question, we have two switch in our rack for our main office (adding a third soon and stacking them all). The VLANs are handled by the switches, configured by previous tech. I am looking to isolate the Wireless guest vlan and re-configure anything else if needed. Problem is that I cannot seem to find the routes for inter-vlan routing, i've added the config from SW1 below, also running a Sonicwall firewall.
hostname "HP-2920-48pt-G sw1" module 1 type j9729a trunk 5-6 trk1 lacp trunk 7-8 trk2 lacp trunk 1-2 trk4 lacp ip access-list extended "100" 10 deny ip 192.168.60.0 0.255.255.255 192.168.40.0 0.255.255.255 20 deny ip 192.168.60.0 0.255.255.255 192.168.50.0 0.255.255.255 30 permit ip 192.168.60.0 0.255.255.255 192.168.10.254 0.0.0.0 35 permit ip 192.168.60.0 0.255.255.255 192.168.10.1 0.0.0.0 40 permit ip 192.168.60.0 0.255.255.255 192.168.20.14 0.0.0.0 50 permit ip 192.168.60.0 0.255.255.255 192.168.20.15 0.0.0.0 60 deny ip 192.168.60.0 0.255.255.255 192.168.10.0 0.255.255.255 70 deny ip 192.168.60.0 0.255.255.255 192.168.20.0 0.255.255.255 80 permit ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 exit ip access-list extended "Wireless_Guest" exit ip default-gateway 192.168.10.1 ip route 0.0.0.0 0.0.0.0 192.168.10.1 ip routing interface 1 name "SW2 Prt 1 Uplink" no power-over-ethernet exit interface 2 name "SW2 Prt 3 Uplink" no power-over-ethernet exit interface 3 name "SonicWall_LAN" no power-over-ethernet exit snmp-server community "public" unrestricted snmp-server contact "Bob" oobm no ip address exit vlan 1 name "Default_Management" no untagged 3-4,9-22,25-36,39-48,Trk1-Trk2,Trk4 untagged 23-24,37-38,A1-A2 ip address 192.168.1.254 255.255.255.0 ip address 192.168.100.254 255.255.255.0 exit vlan 10 name "Transport" untagged 3,13,46-48 ip address 192.168.10.254 255.255.255.0 ip helper-address 192.168.20.14 ip helper-address 192.168.20.15 exit vlan 20 name "Server" untagged 4,9-12,Trk1-Trk2 tagged 23,25,Trk4 ip address 192.168.20.254 255.255.255.0 ip helper-address 192.168.20.14 ip helper-address 192.168.20.15 exit vlan 30 name "Phone" untagged 21 tagged 23,25,Trk4 ip address 192.168.30.254 255.255.255.0 ip helper-address 192.168.20.15 ip helper-address 192.168.20.14 voice exit vlan 40 name "Workstation" untagged 16-19,35,41-45,Trk4 tagged 14,40 ip address 192.168.40.254 255.255.255.0 ip helper-address 192.168.20.14 ip helper-address 192.168.20.15 exit vlan 50 name "Wireless_Internal" tagged 14 ip address 192.168.50.254 255.255.255.0 ip helper-address 192.168.20.14 ip helper-address 192.168.20.15 exit vlan 60 name "Wireless_Guest" tagged 15 ip address 192.168.60.254 255.255.255.0 ip helper-address 192.168.20.14 ip helper-address 192.168.20.15 exit vlan 70 name "Security" untagged 20,22,25-34,36,39 tagged Trk4 ip address 192.168.70.254 255.255.255.0 ip helper-address 192.168.20.14 ip helper-address 192.168.20.15 exit vlan 1500 name "Internet" no ip address exit spanning-tree spanning-tree Trk1 priority 4 spanning-tree Trk2 priority 4 spanning-tree Trk4 priority 4 spanning-tree priority 0 no autorun no dhcp config-file-update no dhcp image-file-update device-profile name "default-ap-profile" cos 0 exit activate provision disable password manager
Edit: Code formatting
No comments:
Post a Comment