NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

oheymanns's avatar
oheymanns
Aspirant
Nov 26, 2018
Solved

M4300 Inter-VLAN routing not over default gateway

Hello Community, I need your help, please. Maybe this topic has already been discussed here, but unfortunately I have found nothing. I have two questions about the switch. 1. We have created 3...
Installation
Troubleshooting
  • LaurentMa's avatar
    LaurentMa
    Nov 28, 2018

    OK thank you very much. I believe it won't work per your requirements with current static routing. I would revert back to pure Layer 2 installation of your VLAN 12 and your VLAN 21. These two VLANs should not be "routing VLANs" anymore and all their traffic should be sent to your firewall straight. A trunk with all VLANs should go to your firewall and your firewall should act as the gateway for VLAN 12 and VLAN 21. This way, your firewall rules will function normally. schumaku do you think the same?

     

    The switches' management VLAN 254 can remain a routing VLAN, in order to let all services function normally in the switch. I hope this helps - 

schumaku's avatar
schumaku
Guru - Experienced User
Nov 26, 2018

Aehm, wild guess this is because of these PCs are using the Sonic Wall IP as the default gateway. In the "fun" of a static IP routing environment, you have to make the relevant switch routing interface the default gateway instead.

  • oheymanns's avatar
    oheymanns
    Aspirant
    Nov 26, 2018

    Hello schumaku,

     

    Thank you for your prompt reply.

     

    No, the switch is the gateway for the PCs. Please see the attachment below.

     

    • oheymanns's avatar
      oheymanns
      Aspirant
      Nov 26, 2018

      The second picture is the packet capture of my sonicwall. You can see the ingress interface.

       

      • schumaku's avatar
        schumaku
        Guru - Experienced User
        Nov 26, 2018

        Still correct - looks like the switch default gateway (configured along the management IP config) is on the VLAN 256. The fun of static routing. All traffic flowing out over one VLAN, over that one subnet with the (management, sigh...) IP network, nd that network is on VLAN 256.

         

        You seem to expect that the switch does inter-VLAN routing while keeping the "outgoing" traffic dedicated on each VLAN which is connected to the security appliance, do you?

         

          

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More