Text only | Text with Images

Networking-Forums.com

Professional Discussions => Routing and Switching => Topic started by: szuguan on November 08, 2023, 08:12:59 PM

Title: Network routing, maybe I am confused!
Post by: szuguan on November 08, 2023, 08:12:59 PM
Dear all,

I have a situation here:

- DHCP is managed by a Windows Domain Controller.
- I have a sophos xg210 firewall.
- I have a Dlink DGS-1510-28X network switch, assumed this is "A"
- I have another 2 network switches, assumed these are "B" and "C"
- A, B and C are linked.
- Please refer to attachment (Pciture 1).

I already set a vlan in the Dlink switch(port 1 to 6) and the vlan port is able to issue ip addresses to devices connected
to these ports(port 1 to 6).

My question is:
I don't know what the next configuration to do to let those devices connected to ports 1 to 6 have internet access and access my local network.

*I may ask more questions along the way, please bear with me, and be patient. Thank you so much ;)





Title: Re: Network routing, maybe I am confused!
Post by: deanwebb on November 09, 2023, 08:40:15 AM
If the Windows DC is doing DHCP, then each switch with devices that need a DHCP address should have a setting that points to the DC as the DHCP server. The setting would be for an "IP Helper" or "DHCP Relay". If another device is handing out DHCP addresses, that can lead to a conflict with the Windows server.

"Next step" is either what the business needs are. If you're not in a business and this is a lab, then it's to set up a scenario you want to work with. If it is your lab, I'd make sure that the firewall is set to block incoming traffic from the nasty old Internet. :)
Title: Re: Network routing, maybe I am confused!
Post by: szuguan on November 13, 2023, 07:13:46 PM
Hi, please refer to this new "picture 2". It is more clear on what I want to achieve and my current network setup.

Please guide/advise me, thank you.
Title: Re: Network routing, maybe I am confused!
Post by: szuguan on November 13, 2023, 07:17:51 PM
Quote from: deanwebb on November 09, 2023, 08:40:15 AMIf the Windows DC is doing DHCP, then each switch with devices that need a DHCP address should have a setting that points to the DC as the DHCP server. The setting would be for an "IP Helper" or "DHCP Relay". If another device is handing out DHCP addresses, that can lead to a conflict with the Windows server.

"Next step" is either what the business needs are. If you're not in a business and this is a lab, then it's to set up a scenario you want to work with. If it is your lab, I'd make sure that the firewall is set to block incoming traffic from the nasty old Internet. :)

So glad to have your reply, thank you.
With my current network setup, I want to let those devices connected to vlan 1 have internet access, refer "picture 2".
Possible? Or you have better/easier suggestion?
Title: Re: Network routing, maybe I am confused!
Post by: deanwebb on November 14, 2023, 01:54:05 PM
Granting that VLAN access would be a matter of making sure the routing tables on the switch and firewall (or just firewall if the switches have no routing functions on them) are able to reach the VLAN. If they can, then it can be permitted Internet access with proper firewall configuration - likely defining that VLAN as part of the inside or trusted zone on the firewall.
Text only | Text with Images