Hi All,
We are trying to monitor & control multiple networks. done configuring cisco core as trunk port allowing particular vlans.
on genian side, done configuring as trunk port with sample IP below
# configure terminal
# interface eth0.1 address 10.1.1.5 255.255.255.0
# interface eth0.1 gateway 10.1.1.1
# interface eth0.1 vlan 1,10,15
# interface eth0.1 management-server enable
# interface eth0.1 node-server enable
# interface eth0.1 radius-server enable
# exit
But the problem is, after configuration, we can’t access nor ping the ip 10.1.1.5. please help.
Regards,
Olais
Hi Jes,
For starters, trunk encapsulation must be set to dot1q. Also, you have configuration conflict with the native vlan settings. You can either remove the native vlan settings from the trunk port, or make the following config changes.
Remove: using syntax > no interface eth0.1 address 10.10.10.5 255.255.255.0
interface eth0.1 address 10.10.10.5 255.255.255.0
interface eth0.1 gateway 10.10.10.1
interface eth0.1 management-server enable
interface eth0.1 node-server enable
interface eth0.1 radius-server enableinterface eth0 vlan 1,
Replace with:
interface eth0 address 10.10.10.5 255.255.255.0
interface eth0 gateway 10.10.10.1
interface eth0 management-server enable
interface eth0 node-server enable
interface eth0 radius-server enable
In this case eth0 will function as the untagged vlan.
Lastly, you must configure a sensor interface on each vlan on the sensor by command line.
Example setup:
Switch
interface FastEthernet2/0/12
description 802.1q Trunk Port for Genian NAC
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,10,20,30,40
switchport mode trunk
ip default-gateway 10.10.10.1
ip classless
ip route 0.0.0.0 0.0.0.0 10.10.10.1
ip route 10.10.10.0 255.255.255.0 10.10.10.1
ip route 10.10.30.0 255.255.255.0 10.10.30.1
ip route 10.10.40.0 255.255.255.0 10.10.30.1
ip http server
Genians – Interfaces and gateways must be configured on the sensor by command line using the following syntax:
> interface eth0.20 address 10.10.20.3 255.255.255.0
> interface eth0.20 gateway 10.10.20.2
interface eth0.10 address 10.10.10.4 255.255.255.0
interface eth0.10 gateway 10.10.10.1
interface eth0.10 management-server enable
interface eth0.10 node-server enable
interface eth0.10 radius-server enable
interface eth0.1 address 10.10.1.3 255.255.255.0
interface eth0.1 gateway 10.10.1.2
interface eth0.20 address 10.10.20.3 255.255.255.0
interface eth0.20 gateway 10.10.20.2
interface eth0.30 address 10.10.30.3 255.255.255.0
interface eth0.30 gateway 10.10.30.2
interface eth0.40 address 10.10.40.3 255.255.255.0
interface eth0.40 gateway 10.10.40.2
interface eth0 vlan 1,10,20,30,40
interface wlan0 mode monitor
More info at: https://docs.genians.com/system/change-interface-type.html