Hi CISCO Community,
I have been searching for this here but it still it does not work
I need help on how to communicate our Private VLAN to other VLANs as well. We are using a MX84.
Our Private VLAN is tagged as VLAN2 at 22.214.171.124/24 using port no. 5.
I need to access our File Server tagged as VLAN6 at 126.96.36.199/32 using port no. 10.
I configure it to the firewall settings to allow traffic from VLAN2 going to VLAN10 but still, I can't access our file server.
Please see my configuration below. Thank you.
The file server is on VLAN6 not VLAN10, but that is not the issue.
Your layer 3 firewalls are all "permits" - so that is not the issue.
I assume that a host on each network can get to the Internet - which will prove you have the correct gateway's configured?
Are you trying to access the file server via its IP address? If not, what method are you using to provide name to IP address mapping?
My next guess is Windows firewall on the file server. Have you tried disabling it?
Also, why are you using public IP addressing on an internal VLAN?
Hi @PhilipDAth ,
Thank you for the correction on VLANs
Yes, I am accessing it via IP Address. It is on a FreeNas so that no windows firewall is needed to configure. It is working properly before when I am using our Fortigate Switch but when I used our Meraki it does not work anymore.
is there a way to communicate different VLANs within different ports? I think my Layer 3 Firewall is configured correctly.
So the default gateway on the FreeNAS is set to 188.8.131.52, and on the hosts 184.108.40.206 with subnet masks on both set to 255.255.255.0 right?
Have you got AMP or IPS enabled? If so, could you trying turning them off for 1 minute and see if it changes the problem. If not, restore them to their original settings.
I've come to realise I have made a giant assumption.
When it is not working - what is actually happening? Do you get an error message?
Can the Freenas box access the Internet?
Can you client access the Internet?
I need to know these answers to verify basic connectivity.
VLAN 3, 4 , 5, 6 and 99 are using private IP addressing in your network.
You didn't answer this question either.
"Have you got AMP or IPS enabled? If so, could you trying turning them off for 1 minute and see if it changes the problem. If not, restore them to their original settings."
AMP and IPS are not enabled at the moment because I am just starting to set this up.
Freenas Box can is on local only, and I don't think it is on the internet? Lan port of our FreeNAS box is directly connected to PORT 10 of MX84.