Samba pomiedzy vlan
: 21 kwie 2018, 14:01
Witam
Panowie mam SG500X
sytacja jest taka mam kilka vlanow, w jedym z vlanow mam serwer samby w innym mam stormshielda ktory realizuje routing oraz rozdaje adresy, domene widze tylko z vlanu w ktorym podpiety jest serwer samby natomiast z pozostalych dostaje tylko adresy bez domeny, Nie ptrafie sobie z tym poradzic, cfg ponizej
Panowie mam SG500X
sytacja jest taka mam kilka vlanow, w jedym z vlanow mam serwer samby w innym mam stormshielda ktory realizuje routing oraz rozdaje adresy, domene widze tylko z vlanu w ktorym podpiety jest serwer samby natomiast z pozostalych dostaje tylko adresy bez domeny, Nie ptrafie sobie z tym poradzic, cfg ponizej
Kod: Zaznacz cały
config-file-header
switchffaafc
v1.4.2.4 / R800_NIK_1_4_194_194
CLI v1.0
set system queues-mode 4
file SSD indicator encrypted
@
ssd-control-start
ssd config
ssd file passphrase control unrestricted
no ssd file integrity control
ssd-control-end cb0a3fdb1f3a1af4e4430033719968c0
!
vlan database
vlan 2-10
exit
voice vlan oui-table add 0001e3 Siemens_AG_phone________
voice vlan oui-table add 00036b Cisco_phone_____________
voice vlan oui-table add 00096e Avaya___________________
voice vlan oui-table add 000fe2 H3C_Aolynk______________
voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
voice vlan oui-table add 00d01e Pingtel_phone___________
voice vlan oui-table add 00e075 Polycom/Veritel_phone___
voice vlan oui-table add 00e0bb 3Com_phone______________
ip dhcp relay address 172.16.0.1
bonjour interface range vlan 1
ip access-list extended VLAN_3
deny ip 172.16.4.0 0.0.0.255 any ace-priority 20
deny ip 172.16.5.0 0.0.0.255 any ace-priority 40
deny ip 172.16.7.0 0.0.0.255 any ace-priority 60
deny ip 172.16.8.0 0.0.0.255 any ace-priority 80
deny ip 172.16.9.0 0.0.0.255 any ace-priority 100
permit ip any any ace-priority 120
exit
ip access-list extended VLAN_4
deny ip 172.16.3.0 0.0.0.255 any ace-priority 20
deny ip 172.16.5.0 0.0.0.255 any ace-priority 40
deny ip 172.16.7.0 0.0.0.255 any ace-priority 60
deny ip 172.16.8.0 0.0.0.255 any ace-priority 80
permit ip any any ace-priority 100
exit
ip access-list extended VLAN_5
deny ip 172.16.3.0 0.0.0.255 any ace-priority 20
deny ip 172.16.4.0 0.0.0.255 any ace-priority 40
deny ip 172.16.7.0 0.0.0.255 any ace-priority 60
deny ip 172.16.8.0 0.0.0.255 any ace-priority 80
permit ip any any ace-priority 100
exit
ip access-list extended VLAN_6
deny ip 172.16.0.0 0.0.0.255 any ace-priority 20
deny ip 172.16.8.0 0.0.0.255 any ace-priority 40
deny ip 172.16.9.0 0.0.0.255 any ace-priority 60
permit ip any any ace-priority 80
exit
ip access-list extended VLAN_7
deny ip 172.16.3.0 0.0.0.255 any ace-priority 20
deny ip 172.16.4.0 0.0.0.255 any ace-priority 40
deny ip 172.16.5.0 0.0.0.255 any ace-priority 60
deny ip 172.16.8.0 0.0.0.255 any ace-priority 80
deny ip 172.16.9.0 0.0.0.255 any ace-priority 100
permit ip any any ace-priority 120
exit
ip access-list extended VLAN_8
deny ip 172.16.2.0 0.0.0.255 any ace-priority 20
deny ip 172.16.3.0 0.0.0.255 any ace-priority 40
deny ip 172.16.4.0 0.0.0.255 any ace-priority 60
deny ip 172.16.5.0 0.0.0.255 any ace-priority 80
deny ip 172.16.6.0 0.0.0.255 any ace-priority 100
deny ip 172.16.7.0 0.0.0.255 any ace-priority 120
permit ip any any ace-priority 140
exit
hostname switchffaafc
username cisco password encrypted ac4eaf19a33808fc3293b79a9ffe89bf317cd0df privilege 15
ip ssh server
ip ssh-client server authentication
no ip domain lookup
ip domain name bes.local
!
interface vlan 1
ip address 172.16.0.2 255.255.255.0
no ip address dhcp
!
interface vlan 2
ip address 172.16.2.2 255.255.255.0
!
interface vlan 3
ip address 172.16.3.2 255.255.255.0
!
interface vlan 4
ip address 172.16.4.2 255.255.255.0
!
interface vlan 5
ip address 172.16.5.2 255.255.255.0
!
interface vlan 6
ip address 172.16.6.2 255.255.255.0
!
interface vlan 7
ip address 172.16.7.2 255.255.255.0
!
interface vlan 8
ip address 172.16.8.2 255.255.255.0
!
interface gigabitethernet1/1/1
switchport trunk allowed vlan add 2-10
!
interface gigabitethernet1/1/2
switchport mode access
switchport access vlan 2
!
interface gigabitethernet1/1/3
switchport mode access
switchport access vlan 2
!
interface gigabitethernet1/1/4
switchport mode access
switchport access vlan 2
!
interface gigabitethernet1/1/5
switchport mode access
switchport access vlan 2
!
interface gigabitethernet1/1/6
switchport mode access
switchport access vlan 2
!
interface gigabitethernet1/1/7
switchport mode access
switchport access vlan 2
!
interface gigabitethernet1/1/8
switchport mode access
switchport access vlan 2
!
interface gigabitethernet1/1/9
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/10
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/11
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/12
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/13
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/14
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/15
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/16
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/17
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/18
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/19
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/20
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/21
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/22
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/23
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/24
switchport mode access
switchport access vlan 3
!
interface gigabitethernet1/1/25
switchport mode access
switchport access vlan 4
!
interface gigabitethernet1/1/26
switchport mode access
switchport access vlan 4
!
interface gigabitethernet1/1/27
switchport mode access
switchport access vlan 4
!
interface gigabitethernet1/1/28
switchport mode access
switchport access vlan 4
!
interface gigabitethernet1/1/29
switchport mode access
switchport access vlan 4
!
interface gigabitethernet1/1/30
switchport mode access
switchport access vlan 4
!
interface gigabitethernet1/1/31
switchport mode access
switchport access vlan 5
!
interface gigabitethernet1/1/32
switchport mode access
switchport access vlan 5
!
interface gigabitethernet1/1/33
switchport mode access
switchport access vlan 5
!
interface gigabitethernet1/1/34
switchport mode access
switchport access vlan 5
!
interface gigabitethernet1/1/35
switchport mode access
switchport access vlan 5
!
interface gigabitethernet1/1/36
switchport mode access
switchport access vlan 5
!
interface gigabitethernet1/1/37
switchport mode access
switchport access vlan 5
!
interface gigabitethernet1/1/38
switchport mode access
switchport access vlan 5
!
interface gigabitethernet1/1/39
switchport mode access
switchport access vlan 6
!
interface gigabitethernet1/1/40
switchport mode access
switchport access vlan 7
!
interface gigabitethernet1/1/41
switchport mode access
switchport access vlan 8
!
interface gigabitethernet1/1/42
switchport mode access
switchport access vlan 9
!
interface gigabitethernet1/1/43
switchport mode access
switchport access vlan 9
!
interface gigabitethernet1/1/44
switchport mode access
switchport access vlan 9
!
interface gigabitethernet1/1/45
switchport mode access
switchport access vlan 9
!
interface gigabitethernet1/1/46
switchport mode access
switchport access vlan 9
!
interface gigabitethernet1/1/47
switchport mode access
switchport access vlan 9
!
interface gigabitethernet1/1/48
switchport mode access
switchport access vlan 9
!
exit
ip helper-address 172.16.3.2 172.16.2.10 53
ip default-gateway 172.16.0.1