NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
GS305E, VLANS and Port Traffic
I have a question for you network experts. So I purchased several of the little GS305E switches for the purpose of separating untrusted devices from others, and to improve performance. I unboxed on...
Dear Sean.
Welcome to the Netgear Community!
JSeanM wrote:
I set the switch to advanced 802.1Q and setup the VLANS and ports as follows. All ports are untagged.
PORT 1 VLANS 1, 2, 3 PVID 1 Router (DHCP - Single network, no subnets)
PORT 2 VLANS 1, 2 PVID 2 Xbox
PORT 3 VLANS 1, 3 PVID 3 PC
All untagged? Something very wrong with your network design..
If the plan is to deal with multiple networks (IP subnets, firewalled security zones, ...), you need some router infrastructure, able to deal with the subnets, correctly handle the NATed Internet access. This also means strict 802.1q VLAN segregation. means With the common consumer and many SOHO routers, this isn't possible.
What you have configured is causing (wanted or unwanted?) what is named asymmetric VLANs. Aware some vendors explicitly allowed the configuration of asymmetrical VLAN - this always required some dedicated control, not available on the big majority of generic VLAN capable and configurable switches. I fear you are on the wrong path, this has nothing in common with an industry standard 802.1q VLAN implementation.
Regards,
-Kurt.
Thanks Kurt for the quick response!
My understanding is I only need to use tags for the trunking between the switches. At this point I only have the one switch connected, directly to the router. Once the other switches are in place, I would have tagging between the trunk ports. Is this ok? Or should I be using tagging with the current single switch setup?
Also, I want to keep this simple and use only a single network, with no subnets. This is a home network with less than 30 devices. My main goal was to separate untrusted and unimportant devices like TVs, kids smart devices and computers, from the devices my wife and I use for work. Given this, I was hoping to avoid the complexity of subsets and configuring routers, maintaining routes, etc.
So am I still on the wrong path?
Thanks again for your input,
Sean
Hello JSeanM
And welcome to the NETGEAR Community! 🙂 Unfortunately in your case you will really need to have a separate subnet if you intend to have a separate network for your devices. If your devices are still on the same subnet and have same PVIDs on their respective VLAN they will really still communicate and not separated. Now if you really want to split the network between devices a different subnet is a must for your requirement. Your router must have this feature otherwise you are unable to achieve your goal to have a separate network for your devices.
Have a lovely day,
Erwin
Netgear Team
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
