Forgive me for asking a newbie (me) question but the subject ain't newbie material :) I have equip. on loan from work for studying and a network guy who helps me but I am bugging the heck out of him and want to avoid it :) He gives me quick drawings and scratch notes of things to go do.
Setup: Cisco 2620 Router ("flash:c2600-ik2os-mz.120-4.T.bin") Catalyst 2900XL (flash:c2900XL-c3h2s-mz.120-5.3.WC.1.bin) Existing Home Lan network
10.0.0.0/25 Existing Gateway (Netgear rt314) to the internet 10.0.0.1Attempted configuration: Due to the fact I am playing with a Home network and trying to learn, I have no way to connect to the serial interfaces as you would normal do from the telco side so I need to setup a situation that supposedly is doable but I am running into problems.
I want 2 subnets on my home LAN so that I am routing between them (10.0.0.0/25 & 10.0.1.0/24 with 10.0.0.128/25 in the future in case you wonder).
So what I want to do is this (Keep in mind I am new at this): The idea is we thought that I could trunk the router and switch so that 2 subnets were located on them. So what we started with was this (I'll summarize):
On the 2620: Assign 10.0.1.1 to fa 0/0.1 Assign 10.0.0.2 to fa 0/0.2 Trunk with dot1q Route 0.0.0.0 0.0.0.0 10.0.0.1
On the Cat 2900XL Trunk Mode dot1q on fa0/1 Access mode for fa0/2 & 3 Assign fa0/1 to vlan 1 & 2 Assign fa0/2 & 3 to vlan 2 Assign 10.0.1.2 to Vlan 1 My newbie-ness wants to know why I wouldn't assign an IP to VLAN 2.I have not asked yet.
The idea was to plug the rt314 into vlan 2 on fa0/2 but I have not done that yet as I cannot even get the router and switch talking :) 1 thing at a time :)
I could not ping from the 1 to the other and vice-versa. On the router I can ping from 1 sub int to the other so it appears routing is working I think. So after looking at debug output and all kinds of reading, I think at least
1 issues was that according to Cisco's web site (I cannot find the link now), the 2900XL prior to v12.1 you could not do Trunk you had to do Multi-VLAN for this situation. So off I went down that rabbit hole. Cisco has a nice little sample config page on how to set it up and I followed it but now I have other issues.I cannot ping between devices. 0 success and when doing a debug all I see these errors: MobileIP: FastEthernet0/0 add 10.0.1.2 rejected
05:48:34: IP ARP req filtered src 10.0.1.2 0006.28d5.4900, dst 10.0.1.1 0000.0000.0000 wrong cable, interface FastEthernet0/0When I come to my senses a bit and debug arp and ping from the router to the switch 10.0.1.1 > 10.0.1.2 I see this: Sending 5, 100-byte ICMP Echos to 10.0.1.2, timeout is 2 seconds:
16:29:10: IP ARP: creating incomplete entry for IP address: 10.0.1.2 16:29:10: IP ARP: sent req src 10.0.1.1 0006.53a9.6e80, dst 10.0.1.2 0000.0000.0000 FastEthernet0/0.1When I look at the ARP table I see this: Router1#sh ip arp Protocol Address Age (min) Hardware Addr Type Interface Internet 10.0.0.2 - 0006.53a9.6e80 ARPA FastEthernet0/0.2 Internet 10.0.1.2 0 Incomplete ARPA Internet 10.0.1.1 - 0006.53a9.6e80 ARPA FastEthernet0/0.1
I dread pasting in long configs but in an effort to not drag this subject out I will.
sh config on Router Using 1178 out of 29688 bytes ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname Router1 ! enable secret 5 enable password ! ip subnet-zero no ip domain-lookup ! ! ! ! ! ! ! interface FastEthernet0/0 no ip address no ip directed-broadcast no ip mroute-cache speed 100 full-duplex ! interface FastEthernet0/0.1 description VLAN 1 encapsulation dot1Q 1 ip address 10.0.1.1 255.255.255.0 no ip directed-broadcast ! interface FastEthernet0/0.2 description VLAN 2 encapsulation dot1Q 2 ip address 10.0.0.2 255.255.255.128 no ip directed-broadcast ! interface Serial0/0 no ip address no ip directed-broadcast no ip mroute-cache shutdown no fair-queue interface Serial0/1 no ip address no ip directed-broadcast no ip mroute-cache shutdown no cdp enable ! ip default-gateway 10.0.0.1 ip classless ip route 0.0.0.0 0.0.0.0 10.0.0.1 no ip http server ! dialer-list 1 protocol ip permit dialer-list 1 protocol ipx permit no cdp advertise-v2 ! line con 0 exec-timeout 0 0 transport input none line aux 0 line vty 0 4 password login ! no scheduler allocate end
***************** sh running-config on switch (I have yet to save the Multi-Vlan setup to NVRAM. Startup still has the trunk setup in it). No I have yet to set a password I will before connecting to WAN/LAN completely.Building configuration...
Current configuration: ! version 12.0 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname Switch ! ! ! ! ! ! ! ip subnet-zero ! ! ! interface FastEthernet0/1 duplex full switchport access vlan 2 switchport multi vlan 1,2 switchport mode multi ! interface FastEthernet0/2 switchport access vlan 2 ! interface FastEthernet0/3 switchport access vlan 2 !
interface VLAN1 ip address 10.0.1.2 255.255.255.0 no ip directed-broadcast no ip route-cache ! interface VLAN2 no ip directed-broadcast no ip route-cache shutdown ! ! line con 0 transport input none stopbits 1 line vty 0 4 login line vty 5 15 login ! end