Inter Vlan routing inssue on internet 3

[NavaneethPai]

I'm using a 3750 switch with four vlans with ip routing enabled. And i have connected this to a pix 515e with no policies applied. i have configured pix for basic internet usage. In my switch i can ping all interfaces and ip's from all other vlans and i can browse the internet from vlan 1. The problem is that i cannot ping the inside interface of pix from any other vlans and eventually cannot browse the internet. What should i do to get internet from other vlans also. Is this the problem arising from the pix, if so can you help me what to do.

 

[MrNick0483]

You need to define static routes on the PIX for each VLAN.

 

[MrNick0483]

Adding the following routing statments to the PIX should do the job. Just change your IP's to match what you have.

pdm location VLAN56 255.255.255.0 inside
pdm location VLAN36 255.255.255.0 inside
pdm location VLAN128 255.255.255.0 inside

route inside VLAN36 255.255.255.0 10.36.0.1 1
route inside VLAN56 255.255.255.0 10.36.56.1 1
route inside VLAN128 255.255.255.0 10.36.128.1 1

 

[burtsbees]

Post a sh run

Burt

 

[VinceWhirlwind]

You need to think about it like this:
Your switch has 4 VLANs on it and it routes between those VLANs.
Your PIX has an IP address for its "Inside" interface.
The switch should have a default route o.o.o.o pointing at the PIX "inside" interface.
The PIX will have a default route 0.0.0.0 pointing out its "Outside" interface AND routes for each of the subnets present on the 3750 pointing back at the 3750's VLAN 1 interface.
As VLAN 1 represents the link between 3750 & PIX, you should avoid using it elsewhere on your 3750.

 

[burtsbees]

It is also good practice to use a different vlan other than vlan 1, and disabling vlan 1...

Burt