NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Help setting up VLANs
Hi, I'm having a hard time setting up home VLANs. I essentially want a separate VLAN for a main (trusted) network, one for the kids, one for guests, and one for IOT devices. I'm sure it's because I don't understand it fully, but I've been spending a lot of time on this and cannot seem to get it right. Could I please have some help?
I cannot figure out how to set the "Advanced 802.1Q" settings on my switches.
Info: I have a home network with a cable modem that goes to an Untangle router, then to a Netgear gs116ev2 switch. From there, it goes to a number of other netgear switches and to Unifi wireless access points. The VLAN's I've set up are 1-default, 20-guest, 30-IOT, and 40-kids. Each has a virtual interface in Untangle with its own DHCP etc.
Here is a basic diagram of my network (all Netgear smart switches):
I'm struggling with the VLAN settings.
For example, here are the main GS116 VLAN settings:
Here are the settings from the GS105ep:
And here are the settings from the GS308EPP:
I essentially want 1) all the wireless AP's to get all four VLANs (1,20,30,40, I have a different SSID for each), the TV and Home Theater PC to just get the Guest VLAN (20). Mom's computer and printer to get the default VLAN (1).
How can I do this?
Could you please help me sort out what I should be setting for each of the ports on the netgear switches?
Thanks in advance,
Ari
doucettea wrote:
Router has 4 VLANs configured Trusted VLAN 1 Guest VLAN 20 IOT VLAN 30 Kids VLAN 40
All go by one cable to main switch. 192.168.10.0/24 192.168.20.0/24 192.168.30.0/24 192.168.40.0/24 Main Switch gs116ev2: (port 1 to router, bedroom and unused ports to guest network, other ports to other switches) 1 Router (Untangle) U T T T 2 UnRaid File Server U PVID-1 3 Backup WiFi Router U PVID-1 4 Empty U PVID-20 5 Empty U PVID-20 6 Media cabinet (switch) U T T T 7 Study U PVID-20 8 Guest BR U PVID-20 9 Kitchen U PVID-20 10 Back Patio U PVID-20 11 BR2 U PVID-20 12 BR3 U PVID-20 13 BR4 U PVID-20 14 Master Bedroom (switch) U T T T 15 Office (switch) U T T T 16 Attic (switch) U T T T Media cabinet gs308epp: (want HTPC and TV on guest network, wifi hotspot broadcast one SSID for each VLAN) 1 Unifi WiFi Hotspot U T T T 2 HTPC U PVID-20 3 TV U PVID-20 4 Empty U PVID-20 5 Main Switch U T T T Office GS105Ev2: 1 Main Switch U T T T 2 Dad PC U PVID-1 3 Kids PC U PVID-20 4 Empty U PVID-40 5 Empty U PVID-20 Master Bedroom GS105Ev2: 1 Main Switch U T T T 2 Mom PC U PVID-1 3 Printer U PVID-1 4 Empty U PVID-1 5 Empty U PVID-1 Attic gs308epp: (wifi hotspots broadcast one SSID for each VLAN) 1 Main Switch U T T T 2 Unifi WiFi Hotspot U T T T 3 Unifi WiFi Hotspot U T T T 4 Empty U PVID-20 5 Empty U PVID-20 6 Empty U PVID-20 7 Empty U PVID-20 8 Empty U PVID-20 Looks fine to me, just to complete some PVIDs on Office GS105Ev2 port 3, 4, 5.
9 Replies
Replies have been turned off for this discussion
Not sure why the images got stripped out. Here they are again.
Network diagram:
https://1drv.ms/u/s!Aig4GloYYwToheh8CElHP_FaL8YVKg?e=Fh18Ok
GS116 VLAN settings:
https://1drv.ms/u/s!Aig4GloYYwToheh5Wg0muDYWiUDMGQ?e=Yb9bP1
GS305ep:
https://1drv.ms/u/s!Aig4GloYYwToheh7BsDyo2hn7kbenw?e=wMNAVf
GS308EPP:
https://1drv.ms/u/s!Aig4GloYYwToheh6UsNE89bibjtzZQ?e=9SnMbe
Nothing stripped - in-line images require moderation before these are published.
Set-up multiple VLANs is rather easy, more cumbersome is having a router able to support multiple network and IP subnetworks, being by port, or by VLAN tags.
- I believe that the router should be able to support VLANs.
https://wiki.untangle.com/index.php/Network_Configuration#VLANs
My problem is not understanding how to configure them as above using the Netgear switches. (to be fair since I'm new to them I might need assistance regardless of the switch brand)
doucettea wrote:
Info: I have a home network with a cable modem that goes to an Untangle router, then to a Netgear gs116ev2 switch. From there, it goes to a number of other netgear switches and to Unifi wireless access points.
I essentially want 1) all the wireless AP's to get all four VLANs (1,20,30,40, I have a different SSID for each),
UniFi does by default run the primary admin and VLAN untagged.
doucettea wrote:
the TV and Home Theater PC to just get the Guest VLAN (20).
The ports where these connect to must be 20 [U]ntagged, PVID 20 (and nothing else).
doucettea wrote:
Mom's computer and printer to get the default VLAN (1).
The ports where these connect to must be 1 [U]ntagged, PVID 1 (and nothing else).
Thank you, that gets me pointed in the right direction.
I'm not clear how to label the ports that go from one switch to another (or to the router), or the ports that have the unifi wifi hotspots on them (all of which broadcast an SSID for each of the four VLANs).
To try to organize it and make communicating about how to set it up easier, I've put the swiches and their ports in a table with the four VLANs.
(may appear more clear in the attached image rather than the html table)
Router has 4 VLANs configured Trusted VLAN 1 Guest VLAN 20 IOT VLAN 30 Kids VLAN 40
All go by one cable to main switch. 192.168.10.0/24 192.168.20.0/24 192.168.30.0/24 192.168.40.0/24 Main Switch gs116ev2: (port 1 to router, bedroom and unused ports to guest network, other ports to other switches) 1 Router (Untangle) U T T T 2 UnRaid File Server U PVID-1 3 Backup WiFi Router U PVID-1 4 Empty U PVID-20 5 Empty U PVID-20 6 Media cabinet (switch) U T T T 7 Study U PVID-20 8 Guest BR U PVID-20 9 Kitchen U PVID-20 10 Back Patio U PVID-20 11 BR2 U PVID-20 12 BR3 U PVID-20 13 BR4 U PVID-20 14 Master Bedroom (switch) U T T T 15 Office (switch) U T T T 16 Attic (switch) U T T T Media cabinet gs308epp: (want HTPC and TV on guest network, wifi hotspot broadcast one SSID for each VLAN) 1 Unifi WiFi Hotspot U T T T 2 HTPC U PVID-20 3 TV U PVID-20 4 Empty U PVID-20 5 Main Switch U T T T Office GS105Ev2: 1 Main Switch U T T T 2 Dad PC U PVID-1 3 Kids PC U 4 Empty U 5 Empty U Master Bedroom GS105Ev2: 1 Main Switch U T T T 2 Mom PC U PVID-1 3 Printer U PVID-1 4 Empty U PVID-1 5 Empty U PVID-1 Attic gs308epp: (wifi hotspots broadcast one SSID for each VLAN) 1 Main Switch U T T T 2 Unifi WiFi Hotspot U T T T 3 Unifi WiFi Hotspot U T T T 4 Empty U PVID-20 5 Empty U PVID-20 6 Empty U PVID-20 7 Empty U PVID-20 8 Empty U PVID-20 Does this look about right? Or what will I still need to change?
Thanks again,
Ari
doucettea wrote:
Router has 4 VLANs configured Trusted VLAN 1 Guest VLAN 20 IOT VLAN 30 Kids VLAN 40
All go by one cable to main switch. 192.168.10.0/24 192.168.20.0/24 192.168.30.0/24 192.168.40.0/24 Main Switch gs116ev2: (port 1 to router, bedroom and unused ports to guest network, other ports to other switches) 1 Router (Untangle) U T T T 2 UnRaid File Server U PVID-1 3 Backup WiFi Router U PVID-1 4 Empty U PVID-20 5 Empty U PVID-20 6 Media cabinet (switch) U T T T 7 Study U PVID-20 8 Guest BR U PVID-20 9 Kitchen U PVID-20 10 Back Patio U PVID-20 11 BR2 U PVID-20 12 BR3 U PVID-20 13 BR4 U PVID-20 14 Master Bedroom (switch) U T T T 15 Office (switch) U T T T 16 Attic (switch) U T T T Media cabinet gs308epp: (want HTPC and TV on guest network, wifi hotspot broadcast one SSID for each VLAN) 1 Unifi WiFi Hotspot U T T T 2 HTPC U PVID-20 3 TV U PVID-20 4 Empty U PVID-20 5 Main Switch U T T T Office GS105Ev2: 1 Main Switch U T T T 2 Dad PC U PVID-1 3 Kids PC U PVID-20 4 Empty U PVID-40 5 Empty U PVID-20 Master Bedroom GS105Ev2: 1 Main Switch U T T T 2 Mom PC U PVID-1 3 Printer U PVID-1 4 Empty U PVID-1 5 Empty U PVID-1 Attic gs308epp: (wifi hotspots broadcast one SSID for each VLAN) 1 Main Switch U T T T 2 Unifi WiFi Hotspot U T T T 3 Unifi WiFi Hotspot U T T T 4 Empty U PVID-20 5 Empty U PVID-20 6 Empty U PVID-20 7 Empty U PVID-20 8 Empty U PVID-20 Looks fine to me, just to complete some PVIDs on Office GS105Ev2 port 3, 4, 5.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
