NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

vim_usr's avatar
vim_usr
Aspirant
Jan 05, 2019
Solved

GS180PEv3 management VLAN reachable via guest VLAN

I originally posted this on the Ubiquiti forums, but have determined that my Netgear GS108PEv3 appears to be the issue.  Details of my network and problem are below:   I have setup a Ubiquiti Edg...
Firmware
Security
Troubleshooting
  • schumaku's avatar
    schumaku
    Jan 05, 2019

    No, this is a limitation of the platforms used for most Smart Managed Plus switches (GSxxxE) - the CPU port can't be restricted to a certain VLAN only. Bet you have no such control for a management VLAN on the UI (only few Smart Managed Plus have, like the XS724EM). And just based on the IP address the switch won't "magically" add a VLAN config or ACL - the management IP is active on all VLANs on these models aimed to be very lightly managed, that's all.

     

    Wonder why you posed on the other vendor forum - it's clearly a (well known, many times) discussed and explained limitations of these very simple managed switch family.

schumaku's avatar
schumaku
Guru - Experienced User
Jan 05, 2019

No, this is a limitation of the platforms used for most Smart Managed Plus switches (GSxxxE) - the CPU port can't be restricted to a certain VLAN only. Bet you have no such control for a management VLAN on the UI (only few Smart Managed Plus have, like the XS724EM). And just based on the IP address the switch won't "magically" add a VLAN config or ACL - the management IP is active on all VLANs on these models aimed to be very lightly managed, that's all.

 

Wonder why you posed on the other vendor forum - it's clearly a (well known, many times) discussed and explained limitations of these very simple managed switch family.

vim_usr's avatar
vim_usr
Aspirant
Jan 05, 2019

Thank you so much for the help.  This was actually the first time I setup my router from scratch, so I posted on the Ubiquiti forum initially thinking my firewall rules were the problem.  This was also the first time I've setup VLANs, so I wasn't sure where to look for help.  Once I realized my switch was the issue, I came here.  Thanks again. BTW, do you have a recommended switch for my needs? A POE switch with 8-16 ports, preferably rack mountable?

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More