NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
4 independent networks in one XS728T
Hi!
I want to set up 4 independent networks on one XS728T. (In fact I have two of them. I have four separate networks and I would like to overcome longer distances by fiber cables.) I therefore configured 4 VLANs with IDs 1, 10, 100, and 200. I assigned them to ports in the VLAN Membership configuration. It works fine when I only plug in cables to VLAN 200 ports, . As soon as I plug in cables to VLAN 1 the traffic stops also on 200 and I also no more can access the switch. Any idea what I have made wrong? Please see the attached screenshots.
Thanks!!
Hello Kurt!
I today found time to move on. I changed the wrong PVID but the problem is still present. As soon as I connect the cables, I lose the connection to one of the switches (the left one on the photo). Could you please look into for me once more? I pulled the configs of both switches.There is one difference I would be happy you could tell me where I can change it: "switchport general pvid 200" at line 277.
https://www.optronic.ch/download/netgear/switch2_31_running-config_20240722.txt
https://www.optronic.ch/download/netgear/switch3_32_running-config_20240722.txt
Best regards
Stephan
4 Replies
stbch wrote:
I want to set up 4 independent networks on one XS728T. (In fact I have two of them. I have four separate networks and I would like to overcome longer distances by fiber cables.) I therefore configured 4 VLANs with IDs 1, 10, 100, and 200. I assigned them to ports in the VLAN Membership configuration. It works fine when I only plug in cables to VLAN 200 ports, . As soon as I plug in cables to VLAN 1 the traffic stops also on 200 and I also no more can access the switch. Any idea what I have made wrong? Please see the attached screenshots.
Happy Saturday stbch
All these ports are [U]ntgged and - except of the VLAN 200 - are set to PVID 1, untagged frames flowing on these ports re ending on VLAN 1 instead of the one intended. no magic intended, so thank you for the complete config screenshots.
Should there be LAGs involved in the config, the same rules apply like for single ports.
Keep in mind that Ethernet-wise these VLAN can never be fully independent, at least as long STP and RSTP is in use on these VLANs.
In STP and RSTP, all VLANs on a LAN use the same spanning tree, which means that VLAN-based balancing cannot be performed. Also, once a link is blocked, it will no longer transmit traffic, which wastes bandwidth and may cause some VLAN packets unable to be forwarded.
To overcome this issue, MSTP divides one switched network into multiple regions, known as Multiple Spanning Tree (MST) regions. Each MST region has multiple spanning trees, known as Multiple Spanning Tree Instances (MSTIs), that are independent of each other.
Regards,
-Kurt
PS. As we're facing a Smart Switch here, I'll suggest a moderator moving this thread to the Plus And Smart Switches Forum to discuss Smart Switches (T) and Plus Switches (E), including Local and Remote Management.
Hello Kurt
Thank you very much for your answer!
I see now the fault with the PVIDs... - see the attached screenshot with the corrected settings.
Regarding the ports being untagged: May I understand it not correctly, but I selected untagged as I do not have traffic from other VLANs on each of the VLAN configured. Behind the switch are only end nodes and switches that are not VLAN aware.
I have no LAGs.
Regarding the STP/RSTP problem: I was not aware of this and think that I currently do not oversee the impact on our network stability when I keep RSTP turned on in the two XS728Ts. When I turn it off, there just will be no more RSTP between the two network setups I currently have, and I overcome the problems you mentioned, right? - With "two" I mean the two networks environments with four networks each I connect with the two XS728T.
May a bad idea to use the two XS728Ts just to establish four independent networks and better use 8 media converters and other simple switches...
Best regards
StephanStephan,
As long as you aware of the STP/RSTP and it's potential problems...a true global network wide STP or RSTP requires some careful design and planning.
If you think RSTP would be sufficient, and have no larger scale network admins to deal with, you better consider configure MSTP for each of your VLANs.
VLAN and PVID config looks ok now.
Of course, you can combine two XS7xxT and run a trunk with all VLANs, if more bandwidth is required have an eye into the LAG config possibilities. In case these are XS7xxT only, go for dynamic LACPs, nd don't forget to configure the LAG similar to the single ports.
Enjoy, and keep asking - always happy to help here!
-Kurt.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
