NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

BeatleManiac's avatar
BeatleManiac
Aspirant
Oct 20, 2023

MS510TXM need some general assistance with Routing config

Hello everyone!   I'm running a MS510TXM with fw 1.0.5.10.   I'm trying to get VLAN routing working and I'm having trouble.  From all subnets/VLANS (tagged & untagged) I can see the gateway addre...
schumaku's avatar
schumaku
Guru - Experienced User
Oct 22, 2023

Yes, technically feasible - and the horror for IT security exposing multiple VLAN to workstation connections. That's why its not a great idea. If you need VLAN 10 on a port, then configure it as an access port with VLAN 10 [U]ntagged, PIVD 10 - and no other VLANs enabled on this switch port.

BeatleManiac's avatar
BeatleManiac
Aspirant
Oct 23, 2023

This is for a home lab, and the Lab Internet router is actually behind the main home Internet router, with a firewall between them.  I'm not worried about security at this point.  I'm just trying to duplicate most of the features of a corporate infrastructure for testing, cert prep, etc.

 

Back to my question though, what can I look at for insight into why I can't go from the untagged side to a tagged side?  Traffic the other way seems to be flowing ok.

 

Steve Hurd

  • schumaku's avatar
    schumaku
    Guru - Experienced User
    Oct 25, 2023
    BeatleManiac wrote:

    Back to my question though, what can I look at for insight into why I can't go from the untagged side to a tagged side?  Traffic the other way seems to be flowing ok.

    Tell us more about your test case, the scenario, ... what does work, and what does not work? The IPv4 traffic must flow through the switch, it does (in my opinion) not matter on how test systems are working with the IP subnets, as long as the networks are workable and configured correct. 

     

    Remember my original proposal to bring up some access ports for testing the subnets and the routing?

    • BeatleManiac's avatar
      BeatleManiac
      Aspirant
      Oct 26, 2023

      Is there anything in the config of my particular switch that designates a port as an access port?  I see how I can assign vlan(s) to an interface, but not access vs trunk.  Is that a command-line option?

       

       

      • schumaku's avatar
        schumaku
        Guru - Experienced User
        Oct 26, 2023

        When I'm talking about an access port its a port configured (exclusively) [U]ntagged for the VLAN required, and the port PVID is set to the same VLAN ID.

         

        At the and of the day, it does not matter if you connect your test systems on tagged trunks or some dedicated test systems to an access port. Appears you have plenty of VMs able to connect and talking to the VLANs, with some VMs ready to test the IP networking and subnetting including the IP routing.

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More