NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

vasileiosg's avatar
vasileiosg
Aspirant
Jan 22, 2017
Solved

Multiple port tagging

Hello,   I have a complicated question so please bare with me for a moment.   I have an ESXi 6.5 host that is running a virtual Sophos UTM 9.4 appliance. I also have a Netgear GS108Ev3 managed sw...
Solutions
  • DaneA's avatar
    DaneA
    Feb 07, 2017

    @vasileiosg,

     

    Since you have confirmed that the PC where the ESXi 6.5 host which runs a virtual Sophos UTM 9.4 appliance is a VLAN-aware device, have you checked if tagging is enabled on the physical LAN adapter of the PC?  Kindly check this link as a guide on how to check it on your PC.

     

    Also, kindly post images of your actual network setup that especially shows the PC where the ESXi 6.5 host which runs a virtual Sophos UTM 9.4 appliance is connected to the GS108Ev3.  

     

     

    Regards,

     

    DaneA
    NETGEAR Community Team

DaneA's avatar
DaneA
NETGEAR Employee Retired
Jan 30, 2017

vasileiosg,

 

If ever the 2 physical devices are not VLAN-aware, ports 1 and 2 should be set as untagged ports on VLAN 2 with a PVID = 2.  

 

Let me share this VLAN set-up example using a GS108Ev2 switch that I found online, click here and use it as a guide.  Hope it helps. 

 

 

Regards,

 

DaneA
NETGEAR Community Team

vasileiosg's avatar
vasileiosg
Aspirant
Feb 01, 2017

Hi DaneA,

 

I did this:

 

I changed the VLAN for Port 1 and 2 to VLAN2 and then i changed the PVID to the same number. Interestingly enough, it completely broke the rest of the ports on the switch as well. I still haven't understood why but the whole switch stopped working and allowing any communication between any ports.

 

So i reset the switch.

 

Now i did this:

PVID for all ports is 1

VLAN1 is untagged to every port

Port 1: Tagged on 1,2,3 = ESXi host. i think this is the best option as the firewall is running there which is VLAN aware.

Port 2: Untagged on 2 = NAS running there which is not VLAN aware

Port 3: Untagged on 2 = NAS running there which is not VLAN aware

Port 4: Untagged on 2

Port 5: Untagged on 3 = Airport which is not VLAN aware

Port 6,7: unused on VLAN1

Port 8: Untagged on VLAN1: ISP router

 

So what is happening now, is that all devices are able to communicate with each other, which is not what i want. 

 

I am assuming the next logical action is to turn the VLAN1 to "tagged" on the ports that i want VLAN2?

 

I am also assuming that i should not touch PVID but leave it as 1?

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More