Advertisement
I administer a network that was designed and implemented by others. It has several VLANs for different device classes, and uses Aruba network gear. One of the subnets is for servers and was limited in scope by a 255.255.255.192 subnet mask. The default gateway for this VLAN is x.x.x.62. I have run out of addresses and need to expand the scope. I changed the subnet mask from to 255.255.255.128 and changed it on all static-assigned servers, the core switch and the DHCP server.<\/p>\n
The systems all get the correct new IP information and all existing machines communicate just fine. Any new server with an ip address over .62 works fine for local traffic but will not connect to the Internet. DNS works properly, but the traffic is not passed from the core switch to the router.<\/p>\n
I’ve checked and checked and can’t find anywhere that might be blocking traffic. Any ideas would be greatly appreciated.<\/p>","upvoteCount":6,"answerCount":7,"datePublished":"2020-03-27T21:59:34.000Z","author":{"@type":"Person","name":"derekmeyer2","url":"https://community.spiceworks.com/u/derekmeyer2"},"acceptedAnswer":{"@type":"Answer","text":"
Are you routing on a layer 3 switch rather than the firewall? If so, then the firewall has static routes pointing back at the layer 3 switch. In that case those routes probably have the old subnets.<\/p>","upvoteCount":3,"datePublished":"2020-03-27T23:29:54.000Z","url":"https://community.spiceworks.com/t/subnet-mask-change-causing-internet-connection-issues/756977/2","author":{"@type":"Person","name":"PatrickFarrell","url":"https://community.spiceworks.com/u/PatrickFarrell"}},"suggestedAnswer":[{"@type":"Answer","text":"
I administer a network that was designed and implemented by others. It has several VLANs for different device classes, and uses Aruba network gear. One of the subnets is for servers and was limited in scope by a 255.255.255.192 subnet mask. The default gateway for this VLAN is x.x.x.62. I have run out of addresses and need to expand the scope. I changed the subnet mask from to 255.255.255.128 and changed it on all static-assigned servers, the core switch and the DHCP server.<\/p>\n
The systems all get the correct new IP information and all existing machines communicate just fine. Any new server with an ip address over .62 works fine for local traffic but will not connect to the Internet. DNS works properly, but the traffic is not passed from the core switch to the router.<\/p>\n
I’ve checked and checked and can’t find anywhere that might be blocking traffic. Any ideas would be greatly appreciated.<\/p>","upvoteCount":6,"datePublished":"2020-03-27T21:59:34.000Z","url":"https://community.spiceworks.com/t/subnet-mask-change-causing-internet-connection-issues/756977/1","author":{"@type":"Person","name":"derekmeyer2","url":"https://community.spiceworks.com/u/derekmeyer2"}},{"@type":"Answer","text":"
+1 for a static route being a likely issue. Definitely explore that, given that you’re saying internal traffic is all fine.<\/p>","upvoteCount":1,"datePublished":"2020-03-28T00:22:09.000Z","url":"https://community.spiceworks.com/t/subnet-mask-change-causing-internet-connection-issues/756977/3","author":{"@type":"Person","name":"ds53","url":"https://community.spiceworks.com/u/ds53"}},{"@type":"Answer","text":"
What does you link look like between the core switch and router?<\/p>","upvoteCount":0,"datePublished":"2020-03-28T02:15:46.000Z","url":"https://community.spiceworks.com/t/subnet-mask-change-causing-internet-connection-issues/756977/4","author":{"@type":"Person","name":"petegaughenbaugh","url":"https://community.spiceworks.com/u/petegaughenbaugh"}},{"@type":"Answer","text":"
Routing or NAT. Are you using static routing, dynamic routing, or a combination of both?<\/p>\n
When you expanded the subnet, did you make sure that it doesn’t overlap with any other subnets?<\/p>\n
Check firewall NAT and access lists. Can the servers ping the firewall?<\/p>","upvoteCount":0,"datePublished":"2020-03-28T05:11:47.000Z","url":"https://community.spiceworks.com/t/subnet-mask-change-causing-internet-connection-issues/756977/5","author":{"@type":"Person","name":"kevinhsieh","url":"https://community.spiceworks.com/u/kevinhsieh"}},{"@type":"Answer","text":"
Didn’t catch the 1st post originally when I replied. Welcome to the community.<\/p>","upvoteCount":0,"datePublished":"2020-03-28T05:13:53.000Z","url":"https://community.spiceworks.com/t/subnet-mask-change-causing-internet-connection-issues/756977/6","author":{"@type":"Person","name":"PatrickFarrell","url":"https://community.spiceworks.com/u/PatrickFarrell"}},{"@type":"Answer","text":"
Thank you all for your input. The routing is done by our firewall/router, which is a new Cisco Meraki device that was configured by a contractor. After checking the switch for routing information and finding that it forwards all traffic to the router, I checked the routing table and found that the static route for the server VPN did indeed have a /26 subnet specified. I changed it to /25 and now things are working properly.<\/p>\n
Thanks for pointing me in the right direction. I appreciate everyone’s ideas.<\/p>","upvoteCount":0,"datePublished":"2020-03-29T06:38:26.000Z","url":"https://community.spiceworks.com/t/subnet-mask-change-causing-internet-connection-issues/756977/7","author":{"@type":"Person","name":"derekmeyer2","url":"https://community.spiceworks.com/u/derekmeyer2"}}]}}