NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Gs728TP VLAN Isolating a single port with only internet
Boot version: 2.0.0.11 Software version: 6.0.1.14 Port 9 Needs to be isolated from the network but also receive internet from port 24. Ports 1-8,10-23 also need to receive internet from port 24...
So create a new VLAN, remove port 9 from any other VLAN, put port 9 [U]ntagged including the same PVID, and make that new VLAN [T]agged on the uplink/router port. Ensure the sub-interface is also operating as tagged for that very same VLAN on the security appliance.
Here again, each 802.1q VLAN is dedicated network, has it's own dedicated broadcast domain, requires it's own IP subnet, so you require some routing (beyond of just the local switch scope), ...
The plan is when I actually have a way to plug this stuff into the switch configurations to split the networks, I am going to configure another sub-interface on the SonicWall Firewall that is plugged into the port 24. I will provide adressing and DHCP to port 9 and forward it to the main IP just like all other traffic is done on what will be the main VLAN. I just want to make sure on its way back and out it stays on its own port.
So create a new VLAN, remove port 9 from any other VLAN, put port 9 [U]ntagged including the same PVID, and make that new VLAN [T]agged on the uplink/router port. Ensure the sub-interface is also operating as tagged for that very same VLAN on the security appliance.
So these would be the only Switch side changes I need to make?
And then just make sure the SonicWall is prepped to expect tagged traffic on VLAN 13, and then provide a DHCP scope for that sub interface, and make the traffic shoot out to the ISP provided IP? Sounds good to me after I get this set up will report back here, soonest being after hours tommorow.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
