NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

weil421980's avatar
weil421980
Follower
Aug 27, 2018

VoIP on DGS-1210-52 switches, Vlan / prioritize

Hi there,

currently I am running two DGS-1210-52 switches.

  • Switch 1 has all the IP phones connected on ports 1-15 and the Unifiy telephone system on port 16.
  • Switch 2 has all the server on port 44-46 and my firewall (for internet access) on port 47
  • The Link between Switches is port 48 on both devices
  • I want to setup "Vlan 20 - Data" and "Vlan 50 - Voice"

I would like to prioritize the Voip traffic but I am not certain that I understand it all. So here are my questions:

  1. Under VLAN - 802.1Q VLAN: Do I enable "asymmetric VLan" or not?
  2. My "shared resources" (like Firewall and Server) have to be in BOTH VLans, right?
  3. Do I have to set the devices as "tagged" or "untagged" ?
  4. Which priority is "best" for my VoIP traffic (under VLAN - Voice VLAN - Voice VLAN Global settings; default is 5 but is a higher number "more important" or a lower number) ?

Thanks for advice

Installation

1 Reply

  • LaurentMa's avatar
    LaurentMa
    NETGEAR Expert
    Aug 27, 2018

    Hi weil421980,

    Welcome to the NETGEAR Community! 

     

    I see you have D-Link DGS 1210 switches so please keep me honest while helping you, it would be much easier for the Community with genuine NETGEAR Smart Managed Pro switches, pointing you to our extensive online documentation and KB articles.

     

    • You probably don't want to use "asymmetric VLAN" on your D-Link switches, this looks like proprietary (non-standard)  overlapping VLANs with several Native / PVID VLANs allowed on one port...  Keep it Disabled.

     

    • Your "shared" resources should be assessed first: are they 802.1Q VLAN-aware?

    Start with your Firewall: if your firewall is VLAN-aware, it can handle inter-VLAN communication for the internet. Like in most cases, set up the VLAN 20 and the VLAN 50 in your firewall, on top of its default Management VLAN (1). The switch 2 port 47 connecting the firewall will be set as "Tagged" with both VLAN 20 and VLAN 50. The default VLAN ID (PVID) can remain as 1 for that switch 2 port 47.

     

    Then go to your servers: are they 802.1Q VLAN aware? Like in most cases if your servers are not VLAN-aware,  each server will be part of one VLAN only. Your server untagged traffic will be automatically tagged with the switch port’s default VLAN ID (PVID). The switch 2 ports 44-46 will be set as "Untagged" with VLAN 20.  The default VLAN ID (PVID) should be 20 as well.

     

    • Your devices should be set as "tagged" if they are 802.1Q VLAN-aware, both sending packets with their VLAN ID tag and expecting to receive packets with a VLAN ID tag. For instance, your UniFi IP phones should be VLAN-aware and configured to use VLAN 50. In that case, the switch 1 ports 1-15 should be "Tagged" with VLAN 50. 
    • Your other devices should be set as "untagged" if they are not VLAN-aware, both sending untagged packets and expecting to receive untagged packets.

     

    • Don't forget the link between switch 1 and switch 2, as the trunk should carry all VLANs. On both switches, the corresponding ports or the LAG should be set as "Tagged" with both VLAN 20 and VLAN 50. The default VLAN ID (PVID) can remain as 1.

     

    • For your Voice VLAN settings, the priority should be set as highest. If the number you are mentioning is the IP Precedence Value from DiffServ RFC 791, then (5)  is OK, meaning critical / Voice. A lower number would mean lower priority.

    May it help you! I hope that you will consider NETGEAR Smart Managed Pro switches in the future -

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More