brianclick3x
Technical User
Inherited a seemingly basic setup - HP Proliant Switch - Sonicwall Firewall plugged into port 24 on the HP
only default vlan1 with Ip - 199.95.137.13
Firewall setup with correct routes to HP switch
This all worked fine , anyone on the 199. network could access anyone and get out to the web.
I added in an Extreme 450e poe switch to support new wireless network.
I followed a setup that i was advised on to get it working and after many frustrating days finally got it working.
by adding new vlan2 wireless to hp switch giving it an ip address of 192.168.3.11 and tagging port 21 which linked it to the new extreme switch.
adding a static route to the firewall 0.0.0.0 0.0.0.0 199.95.137.1
On the extreme switch all i did was create a new vlan with ID 2 , named it wireless, tagged port 21 {uplink to HP}
and added ports 1-16 untagged
I did not enable ipforwarding or assign either vlan an ipaddress.
Added below route setup to firewall as per sonicwall support -
Plugged laptop into port 1, assigned it a static 192.168.3.x address with gateway of 192.168.3.11
and was finally able to ping outside the firewall.
since then everything has been working fine.
After rebooting HP switch this week we are now unable to get out to the web again.
The extreme switch was not powered off when i rebooted the main switch.
Tried rebooting Extreme several times still nothing
Reset Extreme to factory settings and setup vlan 2 again
Deleted vlan 2 from HP switch and then readded it.
Still cannot get out - see pingable addresses below
Rebooted both the Firewall and the HP switch this weekend.
Here is the current setup -
Sonicwall Firewall - 199.95.137.1
HP ProLiant "CORE" SWITCH - 199.95.137.13 (vlan1) 192.168.3.11(vlan2)
EXTREME SWITCH - vlan1, vlan 2 (no ipaddresses)
Laptop plugged into Extreme (ip 192.168.3.249)
Here is the config
Firewall Sonicwall NSA3500 -- 199.95.137.1 - connected to port 24 on HP switch
Address Object -
Name - HPSWITCH
Zone Assignment- LAN
Type- Host
IP - 199.95.137.13
Name - VLAN WIRELESS
Zone Assignments - LAN
TYPE- NETWORK
NETWORK - 192.168.3.0
NETMASK - 255.255.255.0
Route Policies -
Source - ANY
Destination VLAN WIRELESS
SERVICE - ANY
GATEWAY - HP SWITCH
INTERFACE - X0
Port 24 to firewall
------------------------------------
HP Procurve 2910al switch
Gateway default 199.95.138.1
Ip forwarding
Ip route 0.0.0.0 - 0.0.0.0 - 199.95.138.1
Vlan 1 -- default --- HP switch ip 199.95.137.13
Tagged port 21
Vlan2 -- wireless
192.168.3.11
Tagged port 21
IP Route Entries
Destination Gateway VLAN Type Sub-Type Metric Dist.
------------------ --------------- ---- --------- ---------- ---------- -----
127.0.0.0/8 reject static 0 0
127.0.0.1/32 lo0 connected 1 0
156.153.78.192/27 connected 1 0
192.168.3.0/24 wireless 2 connected 1 0
199.95.137.0/24 DEFAULT_VLAN 1 connected 1 0
HP PORT 21 connected via ethernet to PORT 21 Extreme
--------------------------------------------
Extreme 450e Switch
Vlan1 default
Tagged port 21
Vlan2 wireless
Tagged port 21
Untagged port 1-16
ipforwarding disabled
No iproutes added
---------------------------------------------
Dell Laptop Plugged into port1 on the extreme
Laptop assigned ip 192.168.3.249
255.255.255.0
192.168.3.11
---------------------------------------------
Ping Results
From Laptop
Can ping 192.168.3.11
Can ping 199.95.137.13
Can ping 199.95.137.1
Cannot ping past firewall autodesk ip /yahoo ip
From firewall
Can ping 192.168.3.11
Can ping 199.95.137.13
Can Ping Web Addresses
Cannot ping Laptop
From Extreme
From HP SWITCH
Can Ping 199.95.137.X (entire Network)
Can Ping 199.95.137.1 (firewall)
Can Ping 192.168.3.11
Can Ping 192.168.3.249 (laptop)
any help appreciated to help me get out on this extreme
I thought that i might need to add an IPaddress to vlan2 on the extreme so i gave it an ip address of 192.168.3.3
I also tried adding a default route on the extreme of 192.168.3.11
but nothing changed.
only default vlan1 with Ip - 199.95.137.13
Firewall setup with correct routes to HP switch
This all worked fine , anyone on the 199. network could access anyone and get out to the web.
I added in an Extreme 450e poe switch to support new wireless network.
I followed a setup that i was advised on to get it working and after many frustrating days finally got it working.
by adding new vlan2 wireless to hp switch giving it an ip address of 192.168.3.11 and tagging port 21 which linked it to the new extreme switch.
adding a static route to the firewall 0.0.0.0 0.0.0.0 199.95.137.1
On the extreme switch all i did was create a new vlan with ID 2 , named it wireless, tagged port 21 {uplink to HP}
and added ports 1-16 untagged
I did not enable ipforwarding or assign either vlan an ipaddress.
Added below route setup to firewall as per sonicwall support -
Plugged laptop into port 1, assigned it a static 192.168.3.x address with gateway of 192.168.3.11
and was finally able to ping outside the firewall.
since then everything has been working fine.
After rebooting HP switch this week we are now unable to get out to the web again.
The extreme switch was not powered off when i rebooted the main switch.
Tried rebooting Extreme several times still nothing
Reset Extreme to factory settings and setup vlan 2 again
Deleted vlan 2 from HP switch and then readded it.
Still cannot get out - see pingable addresses below
Rebooted both the Firewall and the HP switch this weekend.
Here is the current setup -
Sonicwall Firewall - 199.95.137.1
HP ProLiant "CORE" SWITCH - 199.95.137.13 (vlan1) 192.168.3.11(vlan2)
EXTREME SWITCH - vlan1, vlan 2 (no ipaddresses)
Laptop plugged into Extreme (ip 192.168.3.249)
Here is the config
Firewall Sonicwall NSA3500 -- 199.95.137.1 - connected to port 24 on HP switch
Address Object -
Name - HPSWITCH
Zone Assignment- LAN
Type- Host
IP - 199.95.137.13
Name - VLAN WIRELESS
Zone Assignments - LAN
TYPE- NETWORK
NETWORK - 192.168.3.0
NETMASK - 255.255.255.0
Route Policies -
Source - ANY
Destination VLAN WIRELESS
SERVICE - ANY
GATEWAY - HP SWITCH
INTERFACE - X0
Port 24 to firewall
------------------------------------
HP Procurve 2910al switch
Gateway default 199.95.138.1
Ip forwarding
Ip route 0.0.0.0 - 0.0.0.0 - 199.95.138.1
Vlan 1 -- default --- HP switch ip 199.95.137.13
Tagged port 21
Vlan2 -- wireless
192.168.3.11
Tagged port 21
IP Route Entries
Destination Gateway VLAN Type Sub-Type Metric Dist.
------------------ --------------- ---- --------- ---------- ---------- -----
127.0.0.0/8 reject static 0 0
127.0.0.1/32 lo0 connected 1 0
156.153.78.192/27 connected 1 0
192.168.3.0/24 wireless 2 connected 1 0
199.95.137.0/24 DEFAULT_VLAN 1 connected 1 0
HP PORT 21 connected via ethernet to PORT 21 Extreme
--------------------------------------------
Extreme 450e Switch
Vlan1 default
Tagged port 21
Vlan2 wireless
Tagged port 21
Untagged port 1-16
ipforwarding disabled
No iproutes added
---------------------------------------------
Dell Laptop Plugged into port1 on the extreme
Laptop assigned ip 192.168.3.249
255.255.255.0
192.168.3.11
---------------------------------------------
Ping Results
From Laptop
Can ping 192.168.3.11
Can ping 199.95.137.13
Can ping 199.95.137.1
Cannot ping past firewall autodesk ip /yahoo ip
From firewall
Can ping 192.168.3.11
Can ping 199.95.137.13
Can Ping Web Addresses
Cannot ping Laptop
From Extreme
From HP SWITCH
Can Ping 199.95.137.X (entire Network)
Can Ping 199.95.137.1 (firewall)
Can Ping 192.168.3.11
Can Ping 192.168.3.249 (laptop)
any help appreciated to help me get out on this extreme
I thought that i might need to add an IPaddress to vlan2 on the extreme so i gave it an ip address of 192.168.3.3
I also tried adding a default route on the extreme of 192.168.3.11
but nothing changed.
