无法从服务器 VLAN ping 或 SSH 到新的 Catalyst 2960-CX 交换机 (1)

网络工程 局域网 交换 SSH 管理 交换机端口
2022-02-05 04:33:40

我最近在工作中安装了 Cisco Catalyst 2960-CX 交换机(我是 SMB 的系统管理员)。我们的工作站使用 VLAN 3,但我们的服务器使用 VLAN 1。新交换机(在 VLAN 3 中)的管理 IP 是 192.168.3.253

我可以从工作站 VLAN (VLAN 3) ping 它并通过 SSH 连接到它,但不能从服务器 VLAN (VLAN 1)。我怎样才能解决这个问题?我们正在为 VLAN 使用 ROAS(“棒上的路由器”)设置。我可以从 VLAN 1 向/从 VLAN 3 ping 其他所有东西。

这是交换机的“显示运行简介”:

NewSwitch>ena
Password:
NewSwitch#show run bri
Building configuration...

Current configuration : 2278 bytes
!
! Last configuration change at 18:18:32 UTC Thu Jun 14 2018
! NVRAM config last updated at 17:59:56 UTC Thu Jun 14 2018
!
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname NewSwitch
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$GYaG$LSF2suD8FNQhzrM70mwg61
!
username admin password 0 ***********
username Equus password 0 ***********
no aaa new-model
system mtu routing 1500
!
!
ip domain-name company.local
!
!
crypto pki trustpoint TP-self-signed-3533827072
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-3533827072
 revocation-check none
 rsakeypair TP-self-signed-3533827072
!
!
crypto pki certificate chain TP-self-signed-3533827072
 certificate self-signed 01
!
spanning-tree mode rapid-pvst
spanning-tree extend system-id
!
!
vlan internal allocation policy ascending
!
!
interface GigabitEthernet0/1
!
interface GigabitEthernet0/2
 switchport access vlan 3
!
interface GigabitEthernet0/3
 switchport access vlan 3
!
interface GigabitEthernet0/4
 switchport access vlan 3
!
interface GigabitEthernet0/5
 switchport access vlan 3
!
interface GigabitEthernet0/6
 switchport access vlan 3
!
interface GigabitEthernet0/7
 switchport access vlan 3
!
interface GigabitEthernet0/8
 switchport access vlan 3
!
interface GigabitEthernet0/9
 switchport trunk native vlan 3
 switchport mode trunk
!
interface GigabitEthernet0/10
 switchport access vlan 3
!
interface GigabitEthernet0/11
 switchport trunk native vlan 3
 switchport mode trunk
!
interface GigabitEthernet0/12
 switchport trunk native vlan 3
 switchport mode trunk
!
interface Vlan1
 no ip address
!
interface Vlan3
 ip address 192.168.3.253 255.255.255.0
 ip access-group INBOUND in
!
ip default-gateway 192.168.2.1
ip forward-protocol nd
ip http server
ip http secure-server
!
!
ip access-list extended INBOUND
 permit icmp any any echo
 permit icmp any any echo-reply
 permit tcp any any
ip access-list extended OUTBOUND
 permit icmp any any
!
!
line con 0
 logging synchronous
 login local
line vty 0 4
 password ***********
 login local
 transport input ssh
line vty 5 15
 password ***********
 login local
 transport input ssh
!
end
1个回答
ip default-gateway 192.168.2.1

它没有到 192.168.2.1 的接口(或路由),因此您没有默认路由将默认网关指向 192.168.3.0/24 [vlan3] 中存在的东西。

其它你可能感兴趣的问题
上一篇ASA VPN 隧道 NAT 问题 下一篇什么是子域(与 IP 相关)?