NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
VLAN help
Hello, Ive been searching for some time and trying to get the better of understanding vlan of my GS728TPV3 switch. I cant seem to understand how this should work togheter with a TP LINK access poin...
No matter what APs or VLAN capable switch brands you deply:
By SSID where you expect a dedicated network, there is a dedicated VLAN, a dedicvated SSID, a dedicated network and a dedicated IP subnet.
Said that: Every network does operate on a dedicated VLAN, with the network link comnnmecting to the AP is always tagged.
Few exceptions only: Lack of expereicne or to keep things simple, you can operate the primary network untagged, and keep the management on that same network, too.
For each network, one does typically require a DHCP server per netwoprk resp. per VLAN.
PS. I'll request a moderator to move this thread to the Smart Managed and Pus Switch community section, since the GS728TPV3 is not a managed switch model
Hi Schumaku,
I am not sure i understood it correctly but to simply put this:
I have a router first, providing dhcp, connected to netgear poe switch.
I then have an access point connected to the poe switch also, this AP broadcasts 2 ssid's, lets call first one "internal" and second one "external", this AP also has VLAN.
I dont mind if this management you are talking about exists on the same network as long as "external" ssid cant communicate with it. How do i accomplish this as simple as possible if it is possible?
I can turn on a feature "guest" on the ssid in order to block that ssid to communicate with my switch and router etc but id like to not turn on that feature if possible. (doesnt matter really)
Ive tried watching clips on people explaining vlan but i just cant figure out how i should set mine up at home.
Any helps appreciated.
The DHCP one does typically have on the consumer and SOHO routers is for one network, read for a single VLAN and IP subnet.
This represnets the common "LAN", aka. the VLAN 1, by default where your primary WiFi and by default all switch Ethernet ports are configured to.
Port [n] VLAN =1, [U]ntagged, PVID 1
If introducing an additional network, you talked of a VLAN 5 plus the associated SSID on the AP.
If not done already, create that VLAN 5 on the switch(es)
For the port connecting the AP
Port [nAP] VLAN 1 [U]ntagged, PVID 1
Port [nAP] VLAN 5 [T]agged, PVID remains at 1.
:
For one or some test ports for connecting e.g. a computer, for that VLAn 5
Port [nTest5-n] VLAN = 5 [U]nagged, PVID remains at 5.
...
Port [nTest5-n...] VLAN = 5 [U]nagged, PVID remains at 5.
Essential is that these ports for the VLAN 5 are -only- members of the VLAN 5, and -not- also on the VLAN 1
Now you have a test network for that new VLAN 5.
You will undoubted find that computer connected wont' get a LAN IP assignwed (in absence of a DHCP server on that LAN), so modern computers will fall back to the so called ZeroConf LAN IP subnet.
So for these devices to communicate (for learmning), either use the automatically assigned ZeroConf IP addresses, or define that VLAN 5 to be e.g. 10.5.1.x / 24 (255.255.255.0) IP subnet.
This should explain why I mentioned thaw lack of a DHCP server for that network before.
Thank you so much for the info. It helped me.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
