VLAN routing confusion

GavinMcMenemy
Building a reputation

VLAN routing confusion

We have a small branch office. At this point our MS320-48LP doesn't have any VLANs on it. 

There is a single lan: 192.168.1.0/24. default gateway 192.168.1.1 (the ip address of our cisco).

We are givng access to a small group for a couple of weeks. We'd like to retain our existing LAN but give them a different LAN to use. 

So I'd like to add this subnet 192.168.10.0/24 and to keep it separate I'd like to tag it VLAN 10. 

We will provide them with access to a wireless SSID which will have its traffic tagged vlan 10 and a couple of physical ports on one of our switches. 

How do I add this config? 

I've added the VLANs in this configuration (see image). I have been tinkering...


I Understand that the interface ip has to be different to our default gateway hence me choosing something completely different: 192.168.1.254.

This has created a static route to 192.168.1.1

VLAN 10 says it is already routed. 

Have I set this up correctly is there anything else from a switch perspective I need to do? At this point I am not getting internet on vlan 10. 

Clients connected to the switch or the new SSID ARE picking up the correct IP settings (192.168.10.0/24 ip and gateway of 192.168.10.1).

Supplemental question. 

I have another Switch to which we have a couple of APs. The new SSID should be available on these. I've stacked the switches, will this be enough to route VLAN 10 if clients associate with the APs on that switch?

 

Screenshot 2021-09-17 113706.png

11 REPLIES 11
GavinMcMenemy
Building a reputation

The only meraki switching video I can find is this one. 

https://youtu.be/-_ysGtJQLU4

This is old and the interface is quite different now. When I started the routing I wasn't given the option to prepopulate any data 

ww
Kind of a big deal
Kind of a big deal

Did you add a route on the cisco router 

 

Ip route 192.168.10.0 255.255.255.0 192.168.1.254

GavinMcMenemy
Building a reputation

This is what I suspect but the problem I have is I don't manage that router and the provider are adamant that VLAN 10 is routing. 

ww
Kind of a big deal
Kind of a big deal

Cant they send the #show ip route 

To verify

 

Go to the switch live tools.

Try ping to 8.8.8.8 from source vlan 1 and source vlan 10

 

GavinMcMenemy
Building a reputation

I'm waiting on them coming back to me about that. 


@ww wrote:

Cant they send the #show ip route 

To verify

 

 

 

 

Go to the switch live tools.

Try ping to 8.8.8.8 from source vlan 1 and source vlan 10

 


 

As for that. Works ok from vlan 1 but not vlan 10. 

And as an aside. 

The reason I put this in the community was because I was on hold to meraki support. I got through eventually and they tell me that the VLAN config looks fine. 

I guess I just need to wait & hear back from the router guys.

GavinMcMenemy
Building a reputation


@ww wrote:

Cant they send the #show ip route 

To verify

 

Go to the switch live tools.

Try ping to 8.8.8.8 from source vlan 1 and source vlan 10

 


It doesn't appear to be reaching the router. If I ping 192.168.1.1 from vlan 1. It responds. If I ping from vlan 10 I don't get a response.

Does it matter if the router is on another switch.

We have 2 switches and they're uplinked

AGONI
New here

What is the next hop (192.168.1.1) ?  I believed whatever is at 192.168.1.1 doesn't - know where to send any traffic destined to 192.168.10.0/24. you have to point any data traffic with destination 192.168.10.0/24 to go via 192.168.1.254. Kind of  proper static route needs to be set for that. Good luck

GavinMcMenemy
Building a reputation


@AGONI wrote:

What is the next hop (192.168.1.1) ?  I believed whatever is at 192.168.1.1 doesn't - know where to send any traffic destined to 192.168.10.0/24. you have to point any data traffic with destination 192.168.10.0/24 to go via 192.168.1.254. Kind of  proper static route needs to be set for that. Good luck


Yes.

In our current infrastructure there are no VLANS. It's a small office without any real need. We have visitors coming into the offiec who want to use their own network: a few  wired ports and a wireless ssid.

The logical choice is to set up their own subnet.

I still can't get this working.

their subnet will be 192.168.10.0/24 : their interface IP would be 192.168.10.254 (but could be anything really). The router is on 192.168.1.1

How do I tell the router to send the packets to this IP?

The exisitng subnet is 192.168.1.0/24. The gateway is 192.168.1.1.


If I only add subnet 10 it won't send packets to the router. So I had to add the IP of the router and this is where i am stuck.

GavinMcMenemy_0-1633598417748.png

This is the way I thought I would have to set it up.

Is this not right?

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels