It is recommended that voice be on a separate VLAN from data for a variety of reasons - security, management, QoS control...depending on the capabilities of the switches it isn't necessarily complex. Also, is it the client side router acting as the DHCP server?
Here is one example of...
jdave, can you explain a little more on what you are trying to do? What the topology looks like, where the ipsec tunnel terminates...I would like to understand what you mean when you say vpn passthru.
later...
pmays
ccie#8498
no, its time to think fiber ;-) The distance is obviously keeping you from being able to run 100Mb. Another thought would be if you have a point in between the sites to put a repeater so you can keep the distance below 100m on each side. Depending on which 2950 you have will of course dictate...
you have not defined what inside source addresses NAT should translate. Take a look at this link:
http://www.cisco.com/en/US/partner/tech/tk648/tk361/technologies_tech_note09186a0080094e77.shtml
pmays
ccie#8498
I often have challenges configuring the 2948G-L3<groan>. Try this link it should help with your config:
http://www.cisco.com/warp/public/473/30.html#ex1
pmays
ccie#8498
brewer61, maybe I am missing something obvious in your message but I am curious about a couple of things. First why is the 2950 connecting to the 3500 at 10Mb/half? Secondly if you only have a single VLAN why do you need trunking between the two? Trunking gives the capability of carrying...
Port status LED alternating green-amber indicates the following:
Link fault. Error frames can affect connectivity, and errors such as excessive collisions, CRC errors, and alignment and jabber errors are monitored for a link-fault indication.
pmays
ccie#8498
This link may help you get started in your quest:
http://www.cisco.com/en/US/tech/tk652/tk701/tech_protocol_family_home.html
Under "Technical Details" you'll find white papers and such and under "Technical Documentation" are configuration guides.
Also note on the left side...
As you already realize this is not a recommended design and puts your internal network at risk. With that said... The reason you can access the server from the inside network but you cannot access the inside network from the server is this is how the PIX's Adaptive Security Algorithm (ASA)...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.