I am reaching out in the hope that somebody can assist me with this.Trying to get more coverage in our existing office block by allowing devices to roam om diffrent AP's in the office but still only connect on their allowed LANUnifi Controller sits on 10.0.2.222/20 Network1Network1: We call it Auto10.0.1.0/20Own GW/FW (Internet)3x Unifi AP AC Pro1x Unifi Outdoor+3 x Netgear managable switches5 Vlans ( 4/5 only on switch 2 at the moment) all ap's will plug into this switch1 Default2 Auto VoiP3 Auto-Video4 Wifi-Auto5 Wifi-Prop2xSSID (LSA and LS-Guest)Network2: We call it PROPOwn GW/FW (Internet)192.168.1.0/24NPS for Auth (192.168.1.1x)Has own SSID (LSP)3x Unifi AP AC ProThe idea is to add all the AP's to Network1 and allow the guys sitting on Network2 to connect to their own networkwhile the guys on Network1 are still only connected on their side. (the two networks should not see each other) , I need some help with somebody on hereto get the vlan's right as i am struggeling at the moment with my limited vlan knowledge. Regards

Hey, Let me try and simplify this a bit. Some of the info you give is hard to fully follow :) So, you have 3 SSIDs currently?- "LSA" and "LS-Guest" SSIDs broadcasting on AP no. 1?- "LSP" SSID broadcasting on AP no. 2? Is that the setup? You then want both APs to broadcast all SSIDs, to better "extend" the coverage? However, you still want to separate the traffic so you are considering VLANs - which is the correct thing to do. Do you have any VLANs setup already? If so, which SSIDs are associated with which VLAN IDs? Cheers

Hi So you basicaly got it right but instead of just 2 x AP's i have in total 7 4 AP's broadcasting (LSA and LS Guest) Connected to its own lan with internet/dhcp/firewall etc3 AP's broadcasting (LSP) -- Connected to their own lan with own internet/dhcp/firewall etc The idea is to add to 3 AP's on the LSP network to my Netgear GS749T switch and then add vlan's to my switch to make them be able to still connect to service on their side ( the 3 ap's on the LSP side use NPS to connect) Currently i just have the default vlans on the switch plus the two i created called vlan 4 (Auto Vlan - LSA/LS Guest) and vlan 5 (Prop Vlan - LSP) , but i dont know if the vlan's are correct , because i admit when it comes to vlans i somehow alway struggle.

Hi again, This makes more sense :) So, let's say we have Building A and Building B. Building A:4 AP's broadcasting (LSA and LS Guest). Connected to its own lan with internet/dhcp/firewall etc Building B:3 AP's broadcasting (LSP) -- Connected to their own lan with own internet/dhcp/firewall etc You want to deploy 3 (NEW) APs in Building A, but broadcasting the LSP SSID. Those clients connecting to the LSP network still needs DHCP, Internet, etc from Building B. So, yes VLANs would help you here. Do you have VLANs aready setup anywhere in your network (in either "building")? It does not sounds like it?

Hi Man , Yes currently there is no vlan's setup this would need to be done from scratch.

Cheers sounds good! That would be easy enough I think - on your setup (granted your other switches can do VLANs as well). Acutually, you don't need to do a whole lot with that VLAN setup. Just a question. How are these two "buildings" connecting to each other? Is there a cable from one switch - on one side, to other side or? In other words, do you have a more visible topology? Thanks

VLAN Configuration between Netgear and Unifi

9 Replies

Hopchen
Prodigy
Aug 23, 2017
Hey,

Let me try and simplify this a bit. Some of the info you give is hard to fully follow :)

So, you have 3 SSIDs currently?
- "LSA" and "LS-Guest" SSIDs broadcasting on AP no. 1?
- "LSP" SSID broadcasting on AP no. 2?

Is that the setup?

You then want both APs to broadcast all SSIDs, to better "extend" the coverage? However, you still want to separate the traffic so you are considering VLANs - which is the correct thing to do. Do you have any VLANs setup already? If so, which SSIDs are associated with which VLAN IDs?

Cheers
- Thanatos889
  Aspirant
  Aug 23, 2017
  Hi
  
  So you basicaly got it right but instead of just 2 x AP's i have in total 7
  
  4 AP's broadcasting (LSA and LS Guest) Connected to its own lan with internet/dhcp/firewall etc
  3 AP's broadcasting (LSP) -- Connected to their own lan with own internet/dhcp/firewall etc
  
  The idea is to add to 3 AP's on the LSP network to my Netgear GS749T switch and then add vlan's to my switch to make them be able to still connect to service on their side ( the 3 ap's on the LSP side use NPS to connect)
  
  Currently i just have the default vlans on the switch plus the two i created called vlan 4 (Auto Vlan - LSA/LS Guest) and vlan 5 (Prop Vlan - LSP) , but i dont know if the vlan's are correct , because i admit when it comes to vlans i somehow alway struggle.
  - Hopchen
    Prodigy
    Aug 24, 2017
    Hi again,
    
    This makes more sense :)
    
    So, let's say we have Building A and Building B.
    
    Building A:
    4 AP's broadcasting (LSA and LS Guest). Connected to its own lan with internet/dhcp/firewall etc
    
    Building B:
    3 AP's broadcasting (LSP) -- Connected to their own lan with own internet/dhcp/firewall etc
    
    You want to deploy 3 (NEW) APs in Building A, but broadcasting the LSP SSID. Those clients connecting to the LSP network still needs DHCP, Internet, etc from Building B. So, yes VLANs would help you here. Do you have VLANs aready setup anywhere in your network (in either "building")? It does not sounds like it?
Redento
Apprentice
Aug 25, 2017
Sorry don't understand the problem.

You must add all the AP in VLAN 1, that because Unifi AP need to communicate on VLAN1 whit the Controller.

Then, you have to set VLAN by SSID.

Ex:

SSID1: VLAN 10 LSA
SSID2: VLAN 11 LSA-Guest
SSID3: VLAN 12 LSP
- Hopchen
  Prodigy
  Aug 25, 2017
  Redento
  
  I think that the two server rooms/networks must be separated? I am not 100 % sure - which is why I asked him. If that is the case, then he will need some VLAN seperation. The controller could easily be cloud based, who knows :)
  
  But if all APs are controlled by the same LAN controller and layer 2 separation is not strictly necessary, then yes, you are right - leave the VLAN situation alone.

Forum Discussion

VLAN Configuration between Netgear and Unifi

9 Replies

Related Content

WAN Link Aggregation Configuration for NETGEAR Modems and Routers

WAN Link Aggregation Configuration for NETGEAR Modems and Routers

WAN Link Aggregation Configuration for NETGEAR Modems and Routers

Static IP Address Configuration for AP Mode

Nighthawk CAX30S LAN Configuration

NETGEAR Academy

ProSupport for Business