NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
VLAN Setup question
Hardware version is 1.
I plan to setup 4 VLAN's on each switch as follows
1 default netgear VLAN
260 will be the managment VLAN
360 will be the normal connected device VLAN - for computers and secured Wi-Fi
660 will be the Guest Wi-Fi VLAN
So I know that I need to tag any ports that will have Wi-Fi and Guest Wi-Fi on it and any uplink ports to other switches and believe that I set the PVID to 1 for those.
So let's say ports 1-12 are Wi-Fi access points.
Then am I correct to set all ports on VLAN 1 to untagged U?
Then set uplink port say 45 to Tagged T on VLAN 260 with a PVID of 1?
Then set ports 1-12 and port 45 to Tagged T on VLAN 360 and leave others blank and what should the PVID be? Is 360 correct? Or does it need to be 1?
Then set ports 1-12 and port 45 to Tagged T on VLAN 660 and leave others blank with a PVID of 660 or does it need to be 1 on ports 1-12 and 24?
Or should the ports other than 1-12 and 24 be untagged?
lambertsonm wrote:In whatever VLAN ID you like incoming untagged packets going to - just in case.
Then I should make them VLAN 360 right? not the default 1?
You define this. Can't provide a general rule. If somebody does plug a non-authorized device or an WLAN AP is reset to factory default (ie. by it's local reset button) - where do you want these? Probably not in a productive VLAN ID. Somehwere in a VLAN where you can securely check what is going mad for example I wuld suggest.
lambertsonm wrote:
In whatever VLAN ID you like incoming untagged packets going to - just in case.
Then I should make them VLAN 360 right? not the default 1?
@lambertsonm wrote:
but what should I make the rest of the ports, blank, T, or U on each VLAN 1, 260, 360 and 660?
What for are the other ports used for?
The other ports will be use for computers or workstations and I am not sure how to set these ports.
Untagged for the VLAN you want the computer etc. connected to, same PVID.
5 Replies
Hi lambertsonm,
Welcome to the community!
How to config vlan,you can refter to this document.If have any other questions,please let us know.
Thanks
Well, this article does not really answer my questions. If I have multiple VLAN's going over a single port, what VLAN PVID should I use 1 or something else or doesn't it matter. Secondly, on a VLAN Say ports 1-12 are for Wi-Fi VLAN 360 and Guest Wi-Fi VLAN 660 I know that I have to tag those ports, but what should I make the rest of the ports, blank, T, or U on each VLAN 1, 260, 360 and 660?
lambertsonm wrote:If I have multiple VLAN's going over a single port, what VLAN PVID should I use 1 or something else or doesn't it matter.
In whatever VLAN ID you like incoming untagged packets going to - just in case.
lambertsonm wrote:
Secondly, on a VLAN Say ports 1-12 are for Wi-Fi VLAN 360 and Guest Wi-Fi VLAN 660 I know that I have to tag those ports,
Yes, these are trunk ports, too. But here again, you have to configure the PVID to an ID so untagged packets - if it should happen - are tagged to.
lambertsonm wrote:
but what should I make the rest of the ports, blank, T, or U on each VLAN 1, 260, 360 and 660?
What for are the other ports used for?
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
