VLAN setup on SF302-08P switch

I have the following setup using two SF302-08P PoE switches:
1st floor
=========
Switch #1 <-------> private network
          <-------> public network
2nd floor
=========
Switch #2 <-------> private network
            ....    public network (visible but devices can't connect)
I have tried to make the config in switch #2 identical to switch #1, but something is still wrong.
Is this most likely a VLAN setup problem, or what?
Thanks.
Ken Watkins

Tom,
Thanks so much for your help. In my case, the second VLAN is VLAN 50. Here are the pics of what I think you are talking about through the web interface. Do these look like what you are suggesting?
Thanks again.
Ken

Similar Messages

  • SF302-08P Switch VLAN Problem

    Hello
    I have a problem configuring a SF 302-08P switch for VLAN. Here is my setup. I have two switches that are configured almost the same. The first switch is a SF200-24P with 12 ports on VLAN1 and twelve ports on VLAN2. The G1 port is the incoming trunk with 1UP, 2T and the G2 port set to 1UP, 2T connecting to the G1 port on the SF302-8 switch. Both Vlans work OK on the SF200-24 switch. The port on the SF200-24 is set to trunk 1UP,2T and the G1 port on the SF302-8 is set to trunk 1UP,2T. The VLAN port membership on the SF302-8 is set to VLAN 1 port 1-4 is 1UP and VLAN 2 port 5-8 is set to 2UP. Ports 1-4 work OK but the 5-8 will not connect to vlan 2. I have downloaded the latest firmware for the SF302 but it did not make any difference. Any suggestions on what I am missing?

    Tom
    Ok maybe I can explain this a little different. I inherited this project that two parts were built prior to me. The router is a Sonicwall that has too LAN connections with 192.168.1.x on one LAN and 192.168.2.x on the second LAN. That router is connected to a Cisco SF20024P switch on the first floor of a building. The first floor is connected to a second floor switch which is a SF20024P with the same configuration. Both first floor and second floor works great. There is a third floor which is a much small area that only needed an eight port switch. This is where I came in and installed the third switch which is the SF302-8P. The first floor switch passes traffic up to the second floor switch using a trunk with vlan 1 untagged and vlan 2 tagged. The second floor switch takes in traffic fine and works great. Why should the second switch not pass the vlan 2 traffic to the third switch? It should pass it up to the third switch using the same tagging method. As I said the traffic on vlan 1 works on the third switch, just vlan 2 will not.
    Thanks

  • SF302-08P small buisiness switch with CNA

    I've been using the CNA for our 3560X type switches and really like it.
    I saw the lastest version would support the Sx300 switches.
    I tried it on some of our SF302-08P switches and it worked great!
    But then I tried it on a new one, with newer firmware (1.3.7.18) I got a connection error (said something about not specifying a host name with DNS, but I didn't copy it all down).
    Anyone know if that version of firmware has an issue with the latest CNA?  (6.1)
    I also couldn't update the firmware on the switch to the 1.4.x firmware on the cisco site. Said a mismatch.
    Mark

    Hi,
     Thanks for the response.
    the firmware is for the  SF302-08P switches.
    I use the latest CNA to connect with other 302 switches (older firmware) but not this one with the newer firmware.
    That was what I was trying to find out. Is there an issue with the 1.3.7.18 firmware on the  302 switches AND CNA.
    Or if possibly I'm doing something else wrong (certainly probable)
    thanks
    mark

  • Weird Problem with SF302-8P switches. . .

    3 Network Engineers later. . . I'm appealing to these boards for ideas.
    Situation:
    Rolling out new Avaya POE VOIP phone system for our corporate office. 
    Existing Infrastructure:
    1 Core Cisco 3560 connected to 7 Cisco 2960 with ethertrunking enabled and passing VLAN 1, 100, 300, 400, 500.
    Data VLAN 1/100 (Split to allow the DHCP requests coming from the diffrent sides ofthe building to hand out VLAN appropriate scop Addresss)
    Vlan 1 - 192.168.0.0/24
    Vlan 100 - 192.168.0.0/24
    Vlan 300 (Avaya Servers and Phone Gear4)
    Vlan 400 Avaya DHCP scope for phone addreeses
    Vlan 500 Management VLAN for all SF 302 Switches.
    Because many of the offices have more PC's and phones in them than network drops we purchased 30 SF302-08P switches to power the phones and PC's in the offices. We started by flashing them all to the current release of the firm ware 1.1.2.0 and successfully configured them to work with Vlan 1. The PC's get vlan specific DHCP addresses as do the phones, PC's connected through phones also grab the correct IP address range. We then setup the configuration for Vlan 1, after monkeying around and testing the only major diffrence being we blocked the inheritence of VLAN 1 at a switch port level on the Access switch so that the Vlan 100 would be the data vlan and the PC's would pull the correct IP addresses from DHCP.
    We deployed a few switches on each side and began testing, on the 192.168.0.0/24 side of the network everything is working gloriously, Mac's Windows XP PC's and Windows 7 PC's are all able to conected to the internet and access the pages needed for our call center employees to do what they need to.
    However, on the 192.168.1.0/24 side of the network things got interesting. We found that windows xp machines connected to the SF302 switches which have pulled correct DHCP and DNS information. Can ping, for example, www.expedia.com but when you try to navigate to the website with a browser the page times out. Connecting the same PC directly to a wall port connected to the Access 2950 switch and it can reach the website without a problem. Plug a windows 7 PC into the SF302-08P switch and it can surf to the same websites without issues.
    I've had three diffrent network engineers look at this and it has them stumped, I'm at a loss and any hel would be greatly appreciated.
    here is the running config from one of the SF302 switches that is not working.
    interface  fa4
    spanning-tree link-type point-to-point
    exit
    vlan database
    vlan 1,100,400,500
    exit
    voice vlan id 400
    voice vlan state oui-enabled
    voice vlan oui-table add 0001e3 Siemens_AG_phone________
    voice vlan oui-table add 00036b Cisco_phone_____________
    voice vlan oui-table add 00096e Avaya___________________
    voice vlan oui-table add 000fe2 H3C_Aolynk______________
    voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
    voice vlan oui-table add 00d01e Pingtel_phone___________
    voice vlan oui-table add 00e075 Polycom/Veritel_phone___
    voice vlan oui-table add 00e0bb 3Com_phone______________
    voice vlan oui-table add 2cf4c5 "new avaya"
    interface fastethernet1
    voice vlan enable
    exit
    interface fastethernet2
    voice vlan enable
    [0mMore: <space>,  Quit: q or CTRL+Z, One line: <return>
    exit
    interface fastethernet3
    voice vlan enable
    exit
    interface fastethernet4
    voice vlan enable
    exit
    interface fastethernet4
    voice vlan cos mode all
    exit
    interface fastethernet5
    voice vlan enable
    exit
    interface fastethernet6
    voice vlan enable
    exit
    interface fastethernet7
    voice vlan enable
    exit
    interface fastethernet8
    voice vlan enable
    exit
    [0mMore: <space>,  Quit: q or CTRL+Z, One line: <return>
    interface fastethernet1
    lldp med disable
    exit
    interface fastethernet2
    lldp med disable
    exit
    interface fastethernet3
    lldp med disable
    exit
    interface fastethernet4
    lldp med disable
    exit
    interface fastethernet5
    lldp med disable
    exit
    interface fastethernet6
    lldp med disable
    exit
    interface fastethernet7
    lldp med disable
    exit
    interface fastethernet8
    [0mMore: <space>,  Quit: q or CTRL+Z, One line: <return>
    lldp med disable
    exit
    interface gigabitethernet1
    lldp med disable
    exit
    interface gigabitethernet2
    lldp med disable
    exit
    interface vlan 500
    ip address 192.168.100.27 255.255.255.0
    exit
    ip default-gateway 192.168.100.1
    ip dhcp relay address 192.168.0.3
    ip dhcp relay enable
    interface vlan 100
    ip dhcp relay enable
    exit
    interface vlan 400
    ip dhcp relay enable
    exit
    interface vlan 500
    no ip address dhcp
    [0mMore: <space>,  Quit: q or CTRL+Z, One line: <return>
    exit
    hostname access-302-18
    ip ssh server
    no snmp-server server
    interface fastethernet4
    macro description switch
    exit
    interface gigabitethernet1
    macro description "switch | no_switch | switch | no_switch | switch | no_switch | switch | no_switch"
    exit
    interface fastethernet1
    switchport mode general
    switchport general allowed vlan add 100 tagged
    switchport general pvid 100
    exit
    interface fastethernet2
    switchport mode general
    switchport general allowed vlan add 100 tagged
    switchport general pvid 100
    exit
    interface fastethernet3
    switchport mode general
    [0mMore: <space>,  Quit: q or CTRL+Z, One line: <return>
    switchport general allowed vlan add 100 tagged
    switchport general pvid 100
    exit
    interface fastethernet4
    !next command is internal.
    macro auto smartport dynamic_type unknown
    switchport mode general
    switchport general allowed vlan add 100 tagged
    switchport general pvid 100
    exit
    interface fastethernet5
    switchport mode general
    switchport general allowed vlan add 100 tagged
    switchport general pvid 100
    exit
    interface fastethernet6
    switchport mode general
    switchport general allowed vlan add 100 tagged
    switchport general pvid 100
    exit
    interface fastethernet7
    switchport mode general
    [0mMore: <space>,  Quit: q or CTRL+Z, One line: <return>
    switchport general allowed vlan add 100 tagged
    switchport general pvid 100
    exit
    interface fastethernet8
    switchport mode general
    switchport general allowed vlan add 100 tagged
    switchport general pvid 100
    exit
    interface gigabitethernet1
    switchport trunk allowed vlan add 100,400,500
    exit
    interface gigabitethernet2
    switchport mode access
    switchport access vlan 500
    exit
    n

    Bear with me, I am a fledgling network guy, I know enough to truly be  dangerous, and when the guy who was administering our networks left to  move to another company I got tasked with taking over the phone  migration, mid stream.
    Here is the diagram of our network.
    Hope this is legible. . .  and expandible so it can be read, here is an overall view of our network.   The SF302 Switches Exist in their own management VLAN (500) and use IP addresses 192.168.100.1-30 are connected into the Access switches in this network topology using the Ge1 uplink port.  The port on the Access switch is configured for Trunking to pass all the VLAN information to the devices connected to the SF302 switch.
    As to the why: 
    For simplicity, we about 230+ PCs in our office, with this many PC's using so many DHCP addresses along with printers, switches, wifi devices, etc all needing iP addresses to provide enough IP's and limit the broadcast domain  the designers split the network into multiple DHCP scopes routed through the core 3560 Switch. 
    The result was the east half of the building is assigned IP addresses out of the 192.168.0.0/24 subnet and the West side of the building is assigned DHCP Addresses out of the 192.168.1.0/24 subnet. From a centrally located DHCP server (Our Primary DC)
    The FastEthernet ports are in general mode; from what the guy who set them explained to me, this allows them to pass both the Tagged Vlan 400 Traffic for the phones and the untagged Vlan 100 traffic for the data vlan. This allows either a PC or a VOIP phone to be plugged into any port on the switch and pull the appropriate DHCP address and as far as I am able to tell is functioning as designed.
    The DHCP relay as I understand it, is required to forward dhcp requests to the DHCP Server so that it knows which DHCP scope to assign an IP address to.

  • VLan setup for a 2950 and 2611

    Im trying to setup a real basic VLan setup for 1 2950 switch. I would like to have 3 Vlans on it including the default Vlan. So my understanding is that for all 3 of the VLans to talk to each other I will need a router to be the layer 3 device that routes the Vlans.
    On my 2611 it looks like this:
    interface Ethernet0/0
    no ip address
    full-duplex
    interface Ethernet0/0.1
    encapsulation dot1Q 1 native
    ip address 172.16.10.1 255.255.255.0
    no snmp trap link-status
    interface Ethernet0/0.2
    encapsulation dot1Q 2
    ip address 172.16.20.1 255.255.255.0
    no snmp trap link-status
    interface Ethernet0/0.3
    encapsulation dot1Q 3
    ip address 172.16.30.1 255.255.255.0
    no snmp trap link-status
    Then my 2950 looks like this:
    interface FastEthernet0/1
    description Connection to router
    switchport mode trunk
    speed 10
    duplex full
    interface FastEthernet0/2
    switchport access vlan 2
    interface FastEthernet0/3
    switchport access vlan 3
    interface Vlan1
    ip address 172.16.10.2 255.255.255.0
    no ip route-cache
    ip default-gateway 172.16.10.1
    Ok so as it currently stands the switch and router will not talk to each other at all. From the switch I can not ping the router and vice a versa. If I plug a laptop into one of the ports using VLan1 I can ping the switch IP 172.16.10.2 but obviously can not ping the default gateway which is the router...
    I didnt think this looked very hard but for some reason it does not want to work for me at all...
    Any ideas?
    LR

    I have two things you might try. First set your trunking interface on your switch to auto.
    interface fastethernet 0/1
    speed auto
    duplex auto
    This will help to make sure that the ethernet on the 2611 will negotiate the duplex with the switch. I've had issues with 2611's trying to do full duplex on there ethernet ports.
    Another Option turn on CDP on your router and switch and do a show cdp neighbor to make sure there plugged into the right ports.
    Three you could move the vlan 1 ip address on the 2611 to the main interface. Example below. Then try pinging the switch. Your other tagged vlans should still work at that point. Also if you have multiple switches make sure to setup Vlan Trunk Protocol see NOTE A.
    no interface Ethernet0/0.1
    no encapsulation dot1Q 1 native
    no ip address 172.16.10.1 255.255.255.0
    no snmp trap link-status
    interface Ethernet0/0
    ip address 172.16.10.1 255.255.255.0
    NOTE A
    Add the following commands to each switch to setup your Vlan Trunk Protocol. These are pretty much the minimum amount of commands you can use to setup VTP.
    vtp domain CISCO1
    vtp version 2

  • Installing SF302-08p with VOIP and Vlans

    I am installing this switch to a new departement. The reason of this is to share networks and bring POE over there as we will be istalling VOIP phones next month. We already have a network in place:
    -Cisco me 3400 from the ISP
    -Cisco ASA 5510 firewall
    -Cisco ESW 520 (x3) where access points are connected as well as most part of the network
    -Cisco catalyst 3900 (x3) for extra ports
    I am actually adding these 2 devices:
    -SF302-08P
    -WES610N
    The SF302-08P will be used for network and VOIP, while the WES610n connects 2 industrial printers to the network.
    The network uses VLANS (10 WAN for office, 100 VOIP, 300 WIFI and 309 for management)
    Here are my troubles:
    The SF302-08P refuse VOIP registration but allows computers
    The WES610n connects to access point, allows devices to fetch info from DHCP but blocks every connection except tracert
    Any advices or help on this would be greatly appreciated

    David
    This forum deals primarily with the Cisco Enterprise switches and as such that is the expertise people have here. You have a Small Business switch. No offense intended but you should move this to the Small Business switches forum where you should get the help you need -
    https://supportforums.cisco.com/community/netpro/small-business/switches
    Jon

  • Cisco SF302-08P пропадает с порта trunk native vlan, когда подключаю IP PHONE.

    Здравствуйте!
    У меня возникла проблема с коммутатором Cisco SF302-08P. В частности проблема заключается в настройке порта для IP phone и ПК.
    Как известно это PoE коммутатор.
    vlan database
    vlan 47,147
    exit
    voice vlan id 147
    voice vlan oui-table add 0001e3 Siemens_AG_phone________
    voice vlan oui-table add 00036b Cisco_phone_____________
    voice vlan oui-table add 00096e Avaya___________________
    voice vlan oui-table add 000fe2 H3C_Aolynk______________
    voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
    voice vlan oui-table add 00d01e Pingtel_phone___________
    voice vlan oui-table add 00e075 Polycom/Veritel_phone___
    voice vlan oui-table add 00e0bb 3Com_phone______________
    hostname DepGrajdIniciativ
    ip ssh server
    snmp-server server
    ip telnet server
    interface vlan 47
     ip address 172.27.47.253 255.255.255.0
     no ip address dhcp
    interface fastethernet1
     storm-control broadcast enable
     storm-control broadcast level 10
     storm-control include-multicast
     port security max 10
     port security mode max-addresses
     port security discard trap 60
     spanning-tree portfast
     switchport trunk allowed vlan add 147
     switchport trunk native vlan 47                 <-----               
     macro description ip_phone_desktop
     !next command is internal.
     macro auto smartport dynamic_type ip_phone_desktop
    147 влан для Ip phone. 47 влан для компьютера.
    Дело в том, что когда, например, на 1 порт подключаю IP phone (cisco 6921), с порта пропадает настройка  "switchport trunk native vlan 47", соотвественно, на компьютере, который подключен к телефону на порт "computer", пропадает связь (теряется vlan 47?).  Приходится по новой прописывать, но он сохраняется до следующей перезагрзуки коммутатора или телефона.
    P.S. настройки на коммутаторе сохраняем командой "copy run start" или "wr". На телефоне "admin vlan" указан 147. 
    P.S.S. телефон питается по PoE.
    В чем может быть проблема? я работал со многими cisco коммутаторами, но нигде такой картины не видел....

  • 19" Rackmount-kit included with 8-port switch SF302-08P?

    Hi, distribution can´t tell me if rackmount kit 19" is included in 8-port models... can anybody tell me? Thanks a lot!

    Yes, it is.  From techdata.com:
    WHAT'S IN THE BOX
    Cisco Small Business SF302-08P
    Serial cable
    Rack mounting kit

  • SF302-08P layer 3 mode

    Hi,
    i'm trying to configure SF302-08P in layer 3 mode.
    ports 1 to 8 have ip phones and desktops, port GE1 in connected to a router (not cisco) that links to the internet.
    i created vlan 100 and assigned to ports 1 to 8 (untagged)
    i created vlan 200 and assigned to port ge1 (untagged)
    activated dhcp server , created pool with 192.168.26.0/24 gw 192.168.26.1
                           |router A| (192.168.16.0/24 gw 192.168.16.1)
                               |
                               |
                               | GE1 (192.168.16.14)
                           | SF302-08P |
                                     |
                                     |
    SPA504G+DESKTOP |    SPA504G+DESKTOP
            192.168.26.2                      192.168.26.4
             192.168.26.3                      192.168.26.5
    the problem that i'm facing is that SPA504G and desktops access the internet with their inter address 192.168.26.0/24 and not 192.168.16.14.
    is there a way to achieve what i'm looking ? how does routing work in this case ? shouldn't there be some kind of NAT ?
    thank you

    Hello Luis,
    Is there a particular reason that the switch needs to be in Layer 3 Mode?
    I think your scenario would work better if you configure NAT on your router and let the router act as the DHCP server. Then, the switch could be in Layer 2 Mode.
    Alex

  • VLAN Setup for VMware

    I'm new to creating VLANs on a Cisco switch, and I'm trying to create VLANs using the SG 300-10 for a VMware environment.  I'd like to use Virtual Switch Tagging on the ESX hosts, so I can use many VLANs over few physical NICs.  Plus using VST, I can just specify the VLAN ID (setup on the physical switch), on the port group for each VLAN.
    I've changed the SG 300 to layer 3, as I'd like inter-routing between my VLANs.  This is the type of setup I'm looking for:-
    VLAN1 - Default
    VLAN 10 (192.168.10.1) to 20 (192.168.20.1) linked to ports GE3 & GE4.  I've connected port GE3 to ESX1 (vmnic2) and port GE4 to ESX2 (vmnic2)
    The problem is when I check my physical network adapters (i.e. vmnic2) in vSphere, the IP Ranges for observed traffic in every VLAN specified for the configured port are not showing (i.e. networks 192.168.10.1 to 192.168.20.1) 
    I have attached screen captures of all my setup & configuration so far, I'm obviously making a mistake...
    Could someone please advise what I'm missing?
    Thank you

    I'm new to creating VLANs on a Cisco switch, and I'm trying to create VLANs using the SG 300-10 for a VMware environment.  I'd like to use Virtual Switch Tagging on the ESX hosts, so I can use many VLANs over few physical NICs.  Plus using VST, I can just specify the VLAN ID (setup on the physical switch), on the port group for each VLAN.
    I've changed the SG 300 to layer 3, as I'd like inter-routing between my VLANs.  This is the type of setup I'm looking for:-
    VLAN1 - Default
    VLAN 10 (192.168.10.1) to 20 (192.168.20.1) linked to ports GE3 & GE4.  I've connected port GE3 to ESX1 (vmnic2) and port GE4 to ESX2 (vmnic2)
    The problem is when I check my physical network adapters (i.e. vmnic2) in vSphere, the IP Ranges for observed traffic in every VLAN specified for the configured port are not showing (i.e. networks 192.168.10.1 to 192.168.20.1) 
    I have attached screen captures of all my setup & configuration so far, I'm obviously making a mistake...
    Could someone please advise what I'm missing?
    Thank you

  • SLM 2024 vlans setup

    Hi,
    I purchased the SLM2024 switch recently, but still not able to get it works in vlans setup. Appreciate if someone can help me on this.
    I have configured my router to have two vlans in two interfaces. Each vlan will serve as dhcp server with subnet .10 and .20. I would like to segregate my switch into 2 different vlans, then connect the dhcp interface from my router to each one of the vlan on my switch. So I can have two vlans on switch serve two subnets. How can I do it? I'm new to cisco product, hope someone can guide me thru the setup.
    Thanks,
    Jim

    Hi Ishal, disconnect the switch from all network elements. Reboot the switch. Attach 1 computer to the switch and assign a static IP address on the 192.168.1.x subnet and try to access the switch. Ensure you do not have any wireless connection active on the computer you're using.
    -Tom
    Please mark answered for helpful posts

  • Power adaptor of the sf302-08p

    Hey,
    We are looking for a power adaptor for a cisco switch Sf302-08p. We can't find the adaptor anymore and we have to orde a new one, but we can't figure out the order number of the adaptor. The voltages is 48vdc and has an 4 pin connector . Do someone know the type or ordernumber of this adaptor?
    Thanks a lot.
    Stefan

    Hi Stefan, the power adapter does not have a separate part number. What you can do is call the SBSC, a lot of times they will RMA a whole unit to you then you may remove the power adapter and ship back the unit that was sent. The SX300 RMA process is always advance replacement since it is the defined service level for the warranty.
    -Tom
    Please mark answered for helpful posts

  • SF302-08P & MP

    What is the difference between SF302-08P and SF302-08MP Switches? Comparison Chart is identical.
    Thanks
    DJE

    Hi Douglas,
    MP means "Maximum PoE" meaning that the full PoE specified 15,4 Watts are available simultaniously on all ports.
    Best regards,
    Zsolt

  • Cisco SF302-08P (SRW208P-K9-NA) Support for Cisco IP 7942 Phones

    Hi All,
    I am looking at quoting the SF302-08P for a client which will have three small offices interconnected via single mode fiber. I am planning on connecting them to a 3560 switch. Each office will have no more than 3 - 7942 phones. I reviewed the notes on this switch and it seems it should support this phone type without any issues. Could you advise if you have run into any support/reliability issues with this switch and the 7942s?
    Thank You,

    Hi RevereORL,
    My concern is there are;
    slight nuances or differences between the CLI configuration on the SG300 compared to the Catalyst range.
    I am also very very slightly concerned about post sales support interaction between TAC and SBSC, but these days there is much more cross talking between these two support groups.
    Different SFP SKU's for fiber connectivity GLC- series for catalyst and MGB series on 300, even though I have no issue with plugging the GLC SKU's into my 300 series product.
    The SF302-8P has a POE budget defined as 62W across all 8 ports or 62watts / 8 ports= 7.75 approx watts that can be drawn from each port.
    With the software upgrade to 1.1.1.8 the 300 series now also supports pre-standard POE as well as the 802.3af, power should not be a issue..
    I guess the beauty of buying from a distributor, and keeping the packaging, is that your can validate your application.
    Give it a try,.
    regards Dave

  • How do I access the web utility with model cisco sf302-08p ?

    Hi,i have a problem with the model Cisco SB SF302-08PP Switch , i connect a cable rj45 to my pc and configure the adapter local area connection (ip address:192.168.1.252), the LEDs blink green, and go to the address bar and get the IP by default, which according to the manual is 192.168.1.254 and the result is: page not found. Is there any way to change the web utility? How do I access the web utility?

    restore  the switch by holding more than 30 seconds and try accessing with ip 192.168.1.254. username and password is "cisco". before change your base ip to 192.168.1.2-253.try to ping and check the connectivity

Maybe you are looking for