NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
VLAN help
Hello,
Ive been searching for some time and trying to get the better of understanding vlan of my GS728TPV3 switch.
I cant seem to understand how this should work togheter with a TP LINK access point EAP225.
Id like to explain what i am trying to do, since alot of devices tend to send more data outgoing id like to separate this and came across vlan idea, now, i am not familiar to vlan prior to this but i understand the basic concept and all but i cant get this to work as i want.
Is there any kind soul that perhaps could help point out what i am doing wrong?
Ive created a VLAN on the netgear switch (VLAN 5) and i have set the port of the access point (TP LINK EAP225) to untagged which in this case is port 7 on switch.
Port 1 on the switch is where my router is connected to also.
So i created 2 different SSID wifi on the AP, one for internal devices and one for the rest of wireless devices, if i enable vlan on the ssid of the AP i cannot get any connection to internet with connected device to the ssid, this is where i get confused on how this should work togheter.
My router doesnt have any support for more then one subnet also.
What am i doing wrong? đ
Grateful for any help
4 Replies
No matter what APs or VLAN capable switch brands you deply:
By SSID where you expect a dedicated network, there is a dedicated VLAN, a dedicvated SSID, a dedicated network and a dedicated IP subnet.
Said that: Every network does operate on a dedicated VLAN, with the network link comnnmecting to the AP is always tagged.
Few exceptions only: Lack of expereicne or to keep things simple, you can operate the primary network untagged, and keep the management on that same network, too.
For each network, one does typically require a DHCP server per netwoprk resp. per VLAN.
PS. I'll request a moderator to move this thread to the Smart Managed and Pus Switch community section, since the GS728TPV3 is not a managed switch model
Hi Schumaku,
I am not sure i understood it correctly but to simply put this:
I have a router first, providing dhcp, connected to netgear poe switch.
I then have an access point connected to the poe switch also, this AP broadcasts 2 ssid's, lets call first one "internal" and second one "external", this AP also has VLAN.I dont mind if this management you are talking about exists on the same network as long as "external" ssid cant communicate with it. How do i accomplish this as simple as possible if it is possible?
I can turn on a feature "guest" on the ssid in order to block that ssid to communicate with my switch and router etc but id like to not turn on that feature if possible. (doesnt matter really)
Ive tried watching clips on people explaining vlan but i just cant figure out how i should set mine up at home.
Any helps appreciated.
The DHCP one does typically have on the consumer and SOHO routers is for one network, read for a single VLAN and IP subnet.
This represnets the common "LAN", aka. the VLAN 1, by default where your primary WiFi and by default all switch Ethernet ports are configured to.
Port [n] VLAN =1, [U]ntagged, PVID 1
If introducing an additional network, you talked of a VLAN 5 plus the associated SSID on the AP.
If not done already, create that VLAN 5 on the switch(es)
For the port connecting the AP
Port [nAP] VLAN 1 [U]ntagged, PVID 1
Port [nAP] VLAN 5 [T]agged, PVID remains at 1.
:
For one or some test ports for connecting e.g. a computer, for that VLAn 5
Port [nTest5-n] VLAN = 5 [U]nagged, PVID remains at 5.
...
Port [nTest5-n...] VLAN = 5 [U]nagged, PVID remains at 5.
Essential is that these ports for the VLAN 5 are -only- members of the VLAN 5, and -not- also on the VLAN 1
Now you have a test network for that new VLAN 5.
You will undoubted find that computer connected wont' get a LAN IP assignwed (in absence of a DHCP server on that LAN), so modern computers will fall back to the so called ZeroConf LAN IP subnet.
So for these devices to communicate (for learmning), either use the automatically assigned ZeroConf IP addresses, or define that VLAN 5 to be e.g. 10.5.1.x / 24 (255.255.255.0) IP subnet.
This should explain why I mentioned thaw lack of a DHCP server for that network before.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
