NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
VLAN available without having been added to the list in the switch
Hello.
I just enabled a new VLAN -12 on my network with a variety of other switches, the router is a Cisco Meraki device and the GS110TPV3 is downstream after a few other switches.
So I enabled VLAN 12 on a bunch of them and there is one device - a NAS - on VLAN 12 that I can hit via IP from the other spots on the network where VLAN 12 is tagged.
The GS110TPV3 is hanging off one of those other switches. I have not added VLAN 12 to that switch. However, clients can hit the IP of the device on VLAN 12 from ports on that switch. Does this make sense? I thought I would need to at least add the VLAN and set the member ports and tagged/untagged. How could it be that traffic from VLAN12 travels to the clients on the GS110TPV3? Puzzling.
Just confirmed again, its not in the list of VLANs for that switch. So as far as I know it shouldnt pass any traffic.
13 Replies
However this VLAN12 does reach theGS110TPV3 - just defining a VLAN alone does not do much. The question is on how the upstream switches and port are delivering that VLAN 12 to the GS110TPV3, e.g. as an untagged network for example.
If oyu don't want to become the VLAN 12 ever reaching the Netgear switch (in whatever way), don't configure it on the upstream port where you connect this switch.
Thanks for your reply.
VLAN 12 is not the default VLAN (1 is) and its being tagged all the way over. Otherwise I would be having horrendous issues with two untagged VLANs at once, no?
So why does this VLAN 12 ever reach the Netgear switch, e.g. tagged? Not defining the VLAN on a switch does not imply other tagged VLAN can pass a switch.
The VLAN 12 can be accessed if you connect a system configured as tagged for the VLAN 12.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
