+ Post New Thread
Results 1 to 6 of 6
Wired Networks Thread, Setting a Default Gateway for One VLAN not for whole core switch in Technical; Hi, I am using a cisco core switch and what I need is to set the guest VLAN to go ...
  1. #1
    jdell's Avatar
    Join Date
    Mar 2012
    Location
    Swindon
    Posts
    90
    Thank Post
    5
    Thanked 4 Times in 3 Posts
    Rep Power
    5

    Exclamation Setting a Default Gateway for One VLAN not for whole core switch

    Hi,

    I am using a cisco core switch and what I need is to set the guest VLAN to go to our filtering unit as its default gateway so that unit can then pass on the traffic (transparent proxy) to the firewall. I know i can use ip default-gateway ip-address to change the whole core switch but I dont want that, I really want to do it only for the traffic on that VLAN. I though I may be able to use IP-Helper but I am not to sure if I can.

    Any Advise would be good.

    Thanks

  2. #2
    cpjitservices's Avatar
    Join Date
    Jul 2010
    Location
    Hessle
    Posts
    2,421
    Thank Post
    508
    Thanked 282 Times in 258 Posts
    Rep Power
    81
    Have you set the correct range on the VLAN and are you trunking the VLANS properly if so it will work. if your trunking the Guest VLAN and its on the correct IP Range then it should be able to talk toy our Firewall.

  3. #3
    themightymrp's Avatar
    Join Date
    Dec 2009
    Location
    Leeds, West Yorkshire
    Posts
    1,201
    Thank Post
    211
    Thanked 222 Times in 191 Posts
    Rep Power
    72
    In your DHCP scope for the guest vlan (I assume you have one), what have you got the scopes' default gateway to be? I would be guessing it is set to the core switch for inter-vlan routing? Could you change it to be the filtering box instead and then have that forward its data to the core switch??

    Or am I thinking this through wrong?

  4. #4
    GeekyPete's Avatar
    Join Date
    Mar 2013
    Location
    In a cold dark server room.
    Posts
    339
    Thank Post
    23
    Thanked 78 Times in 59 Posts
    Rep Power
    26
    Your filtering unit will need to have an interface on the wireless vlan with an IP within that vlan range. Once that it present you can then use that IP as the DFG, this is usually one higher than the network address to follow convention.

  5. #5

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,821
    Thank Post
    873
    Thanked 1,675 Times in 1,458 Posts
    Blog Entries
    12
    Rep Power
    444
    When you setup your new VLAN you will give in an IP address and subnet mask. You will use this VLAN IP address for your default gateway on your clients. Static routes that are already setup will send it to your firewall / router.

    You shouldn't need to setup a new interface on the firewall etc.

    You can lockdown your VLANs using Access Control Lists.

    You will need to setup a DHCP range on your DHCP server and setup a IP Helper on your VLAN.
    Last edited by FN-GM; 15th January 2014 at 05:39 PM.

  6. #6
    jdell's Avatar
    Join Date
    Mar 2012
    Location
    Swindon
    Posts
    90
    Thank Post
    5
    Thanked 4 Times in 3 Posts
    Rep Power
    5
    Thanks all,

    I have a DHCP scope made for the guest wireless and The access list in place and working. This whole issue stems from getting apps like twitter and Facebook to work on tablets. When speaking to the company that makes our filtering unit they said that for these apps to work the traffic needs to be forced into the interface of the filtering unit, when this happens the data on these non 80 or 443 ports will work. I have tested without the filter in place and the firewall allows for this to work.

    Hope that helps.

    Thanks for all the help

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 4
    Last Post: 11th March 2013, 12:47 PM
  2. Set Default Gateway for all users
    By link470 in forum Wireless Networks
    Replies: 2
    Last Post: 15th January 2008, 10:30 AM
  3. DNS on one client not working even server IPs set correctly
    By NetworkGeezer in forum Wireless Networks
    Replies: 6
    Last Post: 13th February 2007, 02:13 PM
  4. How can I set the default for .fw3 files? (Fun With Texts)
    By sidewinder in forum Educational Software
    Replies: 2
    Last Post: 6th October 2006, 08:58 AM
  5. Default gateway settings etc. help please.
    By tickmike in forum Wireless Networks
    Replies: 21
    Last Post: 17th September 2006, 03:44 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •