Question

Locked

Multiple VLANs through one router port?

By tygonrow ·
Now first off so I don't miss anything including the small details, treat me like I know nothing. Now my question. I am trying to configure multiple VLANs to connect to a single port on a firewall/Router is this possible?

This conversation is currently closed to new comments.

9 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Answers

Collapse -

Multiple VLANs through one router port?

by dls_cio In reply to Multiple VLANs through on ...

IEEE 802.1Q stadard comes with advantages and disadvantages; however, the answer to your questions - YES! The entire vLAN is software dictated, and it's safe to say, security concerns are improved on VLAN.

Collapse -

Hardware

by retro77 In reply to Multiple VLANs through on ...

What type of hardware are you using? Does it support VLANing? It has to be able to set multiple IP address [vertual] for one ethernet port [physical]. If it can do that, then your good. The traffic from VLAN10 will go to its default gateway [your router] to get to VLAN20.

Collapse -

Help configuring

by tygonrow In reply to Hardware

Thanks for the replies. I am needing lots of help. I have been trying for several days. First lets start off with the equipment I have at hand. I have a Cisco Catalyst 3560G 48+4, a Cisco Catalyst 2950T-24, and a Cisco Catalyst 2960-48TT. My need is to create multiple VLANs and have them connect into one central firewall port. I am sure it can be done but I think I am missing a step. So if we could start at the beginning with the creation of the VLANs and so on until we have at least 2 VLANs sharing the same port to gain access to the one port on the firewall. After that to create more VLANs I am sure I just need to repeat the step. If you can help I would be most grateful.

Collapse -

Creating VLANs

by jason_k In reply to Help configuring

See the following web page on creating VLANs.

You can use the VTP (VLAN trunking protocol) to filter the creation of VLANS through to each switch so you don't have to configure vlans on each switch, but that's not something I have done before, I'm only a beginner with cisco.

http://www.ciscopress.com/articles/article.asp?p=29803

That helped me out a lot.

vlan database
vlan (number) name (VLAN name)
exit

Repeat for each VLAN you need.

After configuring VLANs, you need to assign the correct VLAN to each port.

conf t
interface fastethernet0/(port number)
switchport access vlan (vlan number)
exit

After assigning all the ports for end devices, you need to create a trunk port between each switch. A trunk port communicates data from all VLANs on the switch to another switch or router. The port on that particular switch/router must also be configured as a trunk port. The device it connects to MUST be VLAN aware, otherwise it won't understand the VLAN header and drop the packet.

conf t
interface fastethernet0/(trunk port number)
switchport mode trunk
encapsulation dot1q
end

So each port that connects two switches together, or a switch and a router, or your firewall, must be configured as a trunk port.

Before trying this, I would suggest checking to make sure your firewall is VLAN aware, otherwise there is no point in configuring the switches.

Collapse -

Do it Cisco Way

by BizIntelligence In reply to Help configuring

All the suggestions are worth trying but if you want to jump straight to configuring then following article explains how you can do that with the devices similar to your:

http://www.cisco.com/en/US/tech/tk389/tk815/technologies_configuration_example09186a008015f17a.shtml

If you need general information for InterVlan Routing then go to:

http://www.cisco.com/en/US/docs/switches/lan/catalyst5000/hybrid/routing.html#wp29604

Good Luck !

Collapse -

multiple vlans through one router port

by teaml8ians In reply to Multiple VLANs through on ...

yes it is possible.
all you need to do is configure the link between the router and the swich as a trunk link and create subinterfaces and enable intervlan routing.


conf t
interface fastethernet0/(trunk port number).x
switchport mode trunk
encapsulation dot1q
end


conf t
interface fastethernet0/(trunk port number).x
switchport mode trunk
encapsulation isl
end

Collapse -

yep! teaml8ians is right the "Router on a Stick" method

by CG IT In reply to multiple vlans through on ...

best way to do it. configure subinterfaces for each subnet on the router interface.

Collapse -

Despite being a Zombie Hunter you mean? < nt >

by OldER Mycroft In reply to yep! teaml8ians is right ...
Back to Networks Forum
9 total posts (Page 1 of 1)  

Related Discussions

Related Forums