*
News: SMF - Just Installed!


Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length

EN2092 Configuration with two CISCO 3750 2237

Super Newbie Posts: 6 Karma: +0/-0 *
EN2092 Configuration with two CISCO 3750
« on: July 09, 2014, 08:52:36 AM »
Hello,
First i would like to thank all the administrators of this forum! Searching for one like this for a while!!
My situation is :
I have two EN2092 that i want to connect to two CISCO 3750. Between them i have also an ASA firewall.
I have configured ip routing on the two EN2092 (Layer 3).

First switch EN2092 :
Code: [Select]
interface ip 1
     ip address 10.0.0.2 255.255.255.252
     enable
     exit
!
ip gateway 1 address 10.0.0.1
ip gateway 1 enable
no ip gateway 1 arp-health-check
10.0.0.1 it's an ip address of an interface configured on the backbone.

Second switch EN2092 :
Code: [Select]
interface ip 1
     ip address 10.0.0.5 255.255.255.252
     enable
     exit
!
ip gateway 1 address 10.0.0.6
ip gateway 1 enable
no ip gateway 1 arp-health-check
10.0.0.6 it's an ip address of a second interface configured on the backbone.

My problem is when an user send a request to a server, the packet is sent through the 10.0.0.1 interface of the backbone (this interface as a lower priority defined on the backbone configuration). But when the server respond, it want to do it through the 10.0.0.5 interface (so through the second EN2092 switch) and the ASA firewall blocked the packet. Because it think that it is an attack!

How can i configure the Switches to set all external traffic to go through 10.0.0.2 interface (of the first switch) ?

Hope that i was clear  ::)  :o
Administrator Sr. Member Posts: 309 Karma: +6/-0 *****
Re: EN2092 Configuration with two CISCO 3750
« Reply #1 on: July 10, 2014, 09:05:14 AM »
Hello and welcome to MyPureSupport!

As far as your question, we unfortunately don't have a dedicated networking admin on staff.


I have sent this question to a member of our team that is comfortable but I can not guarantee he will have a solution.

For now my suggestion would be to get the redbook for the EN2092 and see what you can find or look and see if there is a way you can allow communication from the second switch to your ASA.

Thanks and keep us posted!