Vlan

Discussion in 'General Cisco Certifications' started by Nicat T Mirzeyev, Jan 22, 2013.

  1. Nicat T Mirzeyev

    Nicat T Mirzeyev Bit Poster

    10
    0
    4
    Hi gents,

    Think that you have to connect your lan to 2 different ISP. so you have a switch at office which staff use it. so is this possible that connect that switch to 2 indepented routers?? by the Vlan solve this problem.
     
  2. SimonD
    Honorary Member

    SimonD Terabyte Poster

    3,681
    440
    199
    Hang on, that leads to two different gateways.

    Why do you want to have two different ISP's?
     
    Certifications: CNA | CNE | CCNA | MCP | MCP+I | MCSE NT4 | MCSA 2003 | Security+ | MCSA:S 2003 | MCSE:S 2003 | MCTS:SCCM 2007 | MCTS:Win 7 | MCITP:EDA7 | MCITP:SA | MCITP:EA | MCTS:Hyper-V | VCP 4 | ITIL v3 Foundation | VCP 5 DCV | VCP 5 Cloud | VCP6 NV | VCP6 DCV | VCAP 5.5 DCA
  3. Sparky
    Highly Decorated Member Award 500 Likes Award

    Sparky Zettabyte Poster Moderator

    10,718
    543
    364
    Unusual questions today!

    You can have load balancing Firewalls that will sit behind two routers (one for each ISP).

    Is this what you mean?

    confused.com :blink
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) MS-900 AZ-900 Security+ Network+ A+
    WIP: Microsoft Certs
  4. Coupe2T

    Coupe2T Megabyte Poster

    590
    43
    67
    I think you could have 2 vlans set up, each with a different Subnet/DHCP scope being used and then a gateway for each of the 2 vlans, VLAN 1 on one router and VLAN 2 on the other router, however as mentioned above, no idea why you might want to do such a thing, can't see any real world decent use for such a setup!?!
     
    Certifications: ECDL, Does that Count!?!
  5. Nicat T Mirzeyev

    Nicat T Mirzeyev Bit Poster

    10
    0
    4
    in my office there 2 type of works which are almost different works and have to connect to own WAN not by internet, directly so i dont want to buy a new switch . just connect 2 router to a switch make 2 Vlan and cordinate each other to own router. thats all . is this possible?
     
  6. BraderzTheDog

    BraderzTheDog Kilobyte Poster

    276
    2
    49
    Hi,

    Yes what you are saying is possible. So I understand you have 2 separate WAN links that Im guessing terminate in your office on either a firewall or router using PPPoE?

    On the routers interface configure the local network address and subnet e.g.

    Router 1 - configure one of the interfaces that connects to your switch with the private network e.g. 192.168.2.254/24

    Router 2 - configure one of the interfaces that connects to your switch with the network address e.g. 192.168.3.254/24

    If both of these interfaces are going to the same switch lets say you have a 24 port switch add the first 12 interface to say VLAN1 (native), then the second VLAN can be configured with ports 13-24.

    Its easy enough to do, if its Cisco you need to do the following:

    1. from conf t add the vlan
    2. Give the VLAN and IP address in the network you are wanting to reside on (192.168.2.1 255.255.255.0)
    3. Assign the ports the VLAN e.g.

    # interface range fe 0/1 - 12
    # switchport mode access
    # switchport access vlan 100

    The ports are now in the vlan simply plug the cable from the router to a port on the vlan and all is good, let ARP do the rest ;)

    Creating Ethernet VLANs on Catalyst Switches - Cisco Systems
     
    Certifications: CCNA R&S, CCNA-SEC, CCSA, JNCIA FWV, MCITP, MCTS, MTA, A+
  7. Nicat T Mirzeyev

    Nicat T Mirzeyev Bit Poster

    10
    0
    4
    thank you man it is so helpful but what about ip default-gateway? where i have to direct switch??
     
  8. Sparky
    Highly Decorated Member Award 500 Likes Award

    Sparky Zettabyte Poster Moderator

    10,718
    543
    364
    Either you need a firewall that supports VLANs or has a physical interface that you can patch in the switch that has the second VLAN.
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) MS-900 AZ-900 Security+ Network+ A+
    WIP: Microsoft Certs
  9. BraderzTheDog

    BraderzTheDog Kilobyte Poster

    276
    2
    49
    Hi,

    You have two separate lines that come into your office right? So you will have two routers or firewalls? You are simply done when you create the VLAN.

    This is because you are working at layer 2... If your firewall or router is plugged into the VLAN you assigned your switch and you HAVE given the VLAN an IP address the ports in the VLAN will belong to that network. You dont need a default gateway from the VLAN that points to the Router / Firewall as the switch will be running in Layer 2 mode (MAC).

    The communication will work something like this:

    1. Your machine requests 8.8.8.8
    2. The machine will send this to its default gateway (router / firewall)
    3. The Switch will receive the packet and check its CAM table for the MAC address of the default gateway (router / firewall)
    4. This will then be forwarded to the router / firewall.

    As long as you VLAN the switch and set the host machine's default gateway to (firewall / router) IP, everything will work as needed.

    Let me know how you get on.

    Cheers,
    Brad.
     
    Last edited: Jan 28, 2013
    Certifications: CCNA R&S, CCNA-SEC, CCSA, JNCIA FWV, MCITP, MCTS, MTA, A+

Share This Page

Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.