Vlans cant reach firewall gateway

Networking
1

Hello, I have a firewall and a extreme switch with several vlans in the extreme switch. My vlans can ping the IP switch. But cannot ping the default gateway on my LAN. 192.168.2.1 switch 192.168.2.10

Vlan 50 192.168.3.1

Pinging from the firewall also fails. Can someone please help.

1 Like
2

Any particular firewall software being used?

Can you upload your switch configuration?

Also, can you do a trace route from devices on VLAN 50 to the gateway?

1 Like
3

Please provide info on your firewall/gateway/router and your config in general.

2 Likes
4

Module devmgr configuration.

configure snmp sysName “1stfloor”
configure sys-recovery-level switch reset

Module vlan configuration.

configure vlan default delete ports all
configure vr VR-Default delete ports 1-26
configure vr VR-Default add ports 1-26
create vlan “MOTOTIT”
configure vlan MOTORIT tag 50
configure vlan MOTORIT protocol IP
configure vlan Default add ports 1-26 untagged
configure vlan MOTORIT add ports 1, 10 tagged
configure vlan Default ipaddress 192.168.2.10 255.255.255.0
configure vlan Mgmt ipaddress 192.168.2.10 255.255.255.0
configure vlan MOTORIT ipaddress 192.168.3.1 255.255.255.0
enable ipforwarding vlan MOTORIT

Module fdb configuration.

Module rtmgr configuration.

configure iproute add 192.168.2.0 255.255.255.0
192.168.2.10
configure iproute add default 192.168.2.1
configure ipforwarding originated-packets require-ipforwarding

Module mcmgr configuration.

Module aaa configuration.

create account admin MicrosoftAdmin encrypted “QqFa06$ot/exvIFsAs5ZBukjSFGy3e4.”

Module acl configuration.

configure access-list zone SYSTEM application NetLogin application-priority 3
configure access-list zone SECURITY application GenericXml application-priority 2

Module bfd configuration.

Module bgp configuration.

Module cfgmgr configuration.

Module dosprotect configuration.

Module dot1ag configuration.

Module eaps configuration.

Module edp configuration.

Module elrp configuration.

enable elrp-client

Module ems configuration.

Module epm configuration.

Module esrp configuration.

Module ethoam configuration.

Module etmon configuration.

Module exsshd configuration.

Module hal configuration.

Module idMgr configuration.

Module ipSecurity configuration.

Module ipfix configuration.

Module isis configuration.

Module lldp configuration.

Module msdp configuration.

Module netLogin configuration.

Module netTools configuration.

configure vlan MOTORIT dhcp-address-range 192.168.3.2 - 192.168.3.254
configure vlan MOTORIT dhcp-options default-gateway 192.168.3.1
configure vlan MOTORIT dhcp-options dns-server 192.168.2.1
enable dhcp ports 10 vlan MOTORIT

Module ospf configuration.

Module ospfv3 configuration.

Module pim configuration.

Module poe configuration.

Module rip configuration.

Module ripng configuration.

Module snmpMaster configuration.

Module stp configuration.

configure mstp region 0004963671c3
configure stpd s0 delete vlan default ports all
disable stpd s0 auto-bind vlan default
enable stpd s0 auto-bind vlan Default

Module telnetd configuration.

configure telnet vr VR-Default

Module tftpd configuration.

Module thttpd configuration.

enable web http
enable web https

Module vmt configuration.

Module vrrp configuration.

Module vsm configuration.

For the Extreme Switch

Lan 192.168.2.1 255.255.255.0 for the LAN gateway.
for the Dell Sonicwall. NOTE (There was a VLAN for banking 500 but is not there anymore.)

can ping 192.168.3.1 and 3.10. cannot ping 192.168.2.1 or anything else.

from the switch# traceroute host from 192.168.3.1 icmp
Error: Can’t resolve host name to an IPv4 address.

from the vlan 50 pc on the switch - tracert 192.168.2.1

Tracing route to 192.168.2.1 over a maximum of 30 hops

1 * * * Request timed out.
2 * * * Request timed out.
3 * * * Request timed out.
4 * * * Request timed out.
5 * * * Request timed out.
6 * * * Request timed out.
7 * * * Request timed out.
8 * * * Request timed out.
9 * * * Request timed out.
10 * * * Request timed out.
11 * * * Request timed out.
12 * * * Request timed out.
13 * * * Request timed out.
14 * * * Request timed out.
15 * * * Request timed out.
16 * * * Request timed out.
17 * * * Request timed out.
18 * * * Request timed out.
19 * * * Request timed out.
20 * * * Request timed out.
21 * * * Request timed out.
22 * * * Request timed out.
23 * * * Request timed out.
24 * * * Request timed out.
25 * * * Request timed out.

ping 192.168.2.1

Pinging 192.168.2.1 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.

Ping statistics for 192.168.2.1:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),

ping 192.168.2.10

Pinging 192.168.2.10 with 32 bytes of data:
Reply from 192.168.2.10: bytes=32 time<1ms TTL=64
Reply from 192.168.2.10: bytes=32 time=1ms TTL=64
Reply from 192.168.2.10: bytes=32 time=1ms TTL=64
Reply from 192.168.2.10: bytes=32 time=1ms TTL=64

Ping statistics for 192.168.2.10:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 1ms, Average = 0ms

ping 192.168.3.1

Pinging 192.168.3.1 with 32 bytes of data:
Reply from 192.168.3.1: bytes=32 time=1ms TTL=64
Reply from 192.168.3.1: bytes=32 time=1ms TTL=64
Reply from 192.168.3.1: bytes=32 time=1ms TTL=64
Reply from 192.168.3.1: bytes=32 time=1ms TTL=64

Ping statistics for 192.168.3.1:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1ms, Maximum = 1ms, Average = 1ms

Pings from the sonic wall to the 192.168.3.1 gateway fail. States that it isn’t alive.