Home > IT Answers > Networking > InterVlan on Cisco 3560G series switch and Internet Access
ralph123
55 pts.
 InterVlan on Cisco 3560G series switch and Internet Access
Cisco 3560 Switch, Cisco switches, InterVLAN, InterVLAN Routing, Routing, VLAN
I have a cisco 3560G and 2911 series router.The Router has 2 internet interface.One is already configured to an unmanaged switch.The second interface is also configure and it can go to the internet.My task is to configure vlans on the switch and the vlans should communicate with each others.Also each of the vlans should have internet access.using the second interface on the router.Can someone help me with step to step how to do it.I'm new to vlan and inter-routing.Thanks.

Software/Hardware used:
cisco switch 3560 and router 2911
ASKED: April 21, 2011  2:53 PM
UPDATED: May 2, 2011  10:56 PM
RELATED QUESTIONS
Answer Wiki:
Let;s say you have three VLAN's, VLAN 10, 20, and 30. On switch, you will need to create VLAN and name them, assign appropriate Interfaces to one of three VLAN's, create logical VLAN interfaces and assign them an IP Address, and configure ONE interface - the one that connects to router - as trunk. On router, you will need to configure sub-interfaces. Below is sample config. SWITCH ======== config t vlan 10 name user exit vlan 20 name server exit vlan 30 name printers exit int vlan 10 ip address 10.10.10.1 255.255.255.0 int vlan 20 ip address 10.10.20.1 255.255.255.0 int vlan 30 ip address 10.10.30.1 255.255.255.0 int fast 0/1 switchport access vlan 10 int fast 0/5 switchport access vlan 20 int fast 0/10 switchport access vlan 30 int fa 0/24 switchport encapsulation dot1q switchport mode trunk ROUTER (Assuming you have switch port 0/24 connected to router port Gig0/1) ======== int g 0/1.10 encap dot1q 10 ip address 10.10.10.254 255.255.255.0 int gig 0/1.20 encap dot1q 20 ip address 10.10.20.254 255.255.255.0 int gig 0/1.30 encap dot1q 30 ip address 10.10.30.254 255.255.255.0 int g 0/1 no sh ================ The above will get your switch and router to talk. In addition, you will have to configre your router correctly for NAT to all three VLANs can access Internet.
Last Wiki Answer Submitted:  April 23, 2011  3:04 pm  by  pkpatel1151   430 pts.
All Answer Wiki Contributors:  pkpatel1151   430 pts.
To see all answers submitted to the Answer Wiki: View Answer History.


RSS - Discussions Help
Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

 

thanks Pkpatel1151.Your tutorial was very helpful.but can you help me out with NAT on a Vlan.I mean a sample NAT config. so that I can use it for others vlans created.thanks again.Anticipate your reply.

ralph123
 55 pts.
 

Sure.

So let’s assume that your WAN interface is Gig 0/0 on router. You will need three things.

1. Access list

ip access-list extended NAT-ACL

permit ip 10.10.10.0 0.0.0.255 any

permit ip 10.10.20.0 0.0.0.255 any

permit ip 10.10.30.0 0.0.0.255 any

2. NAT Translation

ip nat inside source list NAT-ACL interface gig 0/0

3. Assign NAT to Interface accordingly.

interface gig 0/1.10

ip nat inside
!

int gig 0/1.20



ip nat inside

!


int gig 0/1.30



ip nat inside
!



int gig 0/0




ip nat outside


And that should do.


 
	
	

 
	
	
	
pkpatel1151
 
	
 430 pts.

		

	


 

	

 







	

 
 


	 	
 

 
	
 
		
 
			
 
			 
		
 
		
Thank you very much Pkpatel1151.I will try that now


 
	
	

 
	
	
	
ralph123
 
	
 55 pts.