C3560G VLAN to WAN issues

Hello,

​

I have a R620 server, C3560 switch, and Netgear C6300 (modem/router combo) that is the focus of my issue.

​

Small diagram for reference: https://imgur.com/a/r9rolXN

​

All communication works when I run the switch with zero configuration - everything on VLAN 1. However, I am looking to implement VLANs within my network. I did the following on a partial test environment:

​

• Established VLANs
  • VLAN 20 - Home - 192.168.20.1
    • 2x desktops; 2x roku; 1x AP
  • VLAN 30 - Management - 192.168.30.1
    • Want this as my switch wan port, possibly add other stuff (iDrac)
  • VLAN 40 - Security Cameras - 192.168.40.1
  • VLAN 50 - Blackhole - All unused ports placed here and disabled

​

• Configured DHCP pool
  • Each VLAN has a dedicated pool that points to the appropriate DNS and default router
    • default router is the ip of each VLAN as shown above

​

• Linked VLANs to ports
  • gi 0/47 = WAN
  • gi 0/7 = Test desktop
  • gi 0/1 = remote connection from server to switch <--- not part of the issue, just where I have it temporary while I test this

​

From my test desktop at 192.168.20.32, I am able to ping 192.168.20.1 (gateway). I can reach out further and ping Interface gi 0/47, the gateway of 192.168.20.1 and my direct connection into the modem/router. However, I cannot ping 192.168.0.1 (the actual modem and gateway to the internet). So my desktop cannot communicate to the internet.

​

What I have tried:

• ip routing is turned on for the switch so it works at L3
• gi 0/47 as a trunk a few different ways (is this what I am supposed to do to trunk all VLAN comms over the WAN port)
• gi 0/47 as a dedicated route a few different ways (heard this was the actual way, but how do the VLANs communicate over it without trunking?)
• All appropriate ports are up and running and can communicate

​

I am thinking gi 0/47 as a dedicated route should work, but I have two issues and haven't been able to fully test it. First, I attempted to give gi 0/47 a dedicated route, but IOS says that the ip I gave it is overlaps with VLAN 1. So, when I go to VLAN 1 to change it to some random IP, I of course lose access to my remote connection to the switch. I can't go any further and have to start back over if I can reacquired connection (default the port out and start again).

​

Questions I need help with:

• When I set up my switch, Cisco directs me to the non-console (web) setup and it forces me to pick a Management VLAN and IP address with gateway -- If I choose anything besides VLAN 1, I cannot connect to the switch and have to hard reset to and start over. If I keep it VLAN 1, everything works fine until I go forward with making gi 0/47 a dedicated route to my router/modem -- this is where I get the "overlap" issue. Well, of course it overlaps, I was forced to make that my IP address at the initial setup just to gain initial connection.
  • What is wrong with my logic here?
  • Why, even after moving everything off of VLAN 1 one I cannot re-direct my switch IP address to different VLAN without losing connection and not able to regain it with the new IP?
• If I turn on routing/L3 for my C3560, can I turn off routing on my C6300 modem/router

​

Reviewed about 100 cisco community posts to include

https://community.cisco.com/t5/switching/problem-changing-vlan-1-ip-address/td-p/1631314 but lost connection to the switch when I changed the switch IP to a non-overlapping IP... could not reacquire the on the new IP address.

https://www.cisco.com/c/en/us/support/docs/lan-switching/inter-vlan-routing/41260-189.html Currently following this example... does it make sense?

​

I have Cisco Network Assistant, but I swear it makes things worse rather than better. Been trying CLI as much as possible, but the initial setup forces the first configuration. My CCNA experience is from about 15 years ago and things have changed a bit. Back in the day I would configure a switch away from production and bring it in and connect it pre-configured. Is that still viable... will that prevent some of the initial setup issues? With this being a home environment, I didn't want to get too complex, but I got sucked in and now want to figure it out. Will take any feedback, write-ups, etc. Thanks.

​