WAX630E: VLANs Not Behaving Correctly

Question

Hi there,&nbsp;I'm having an issue with&nbsp;WAX630E units at a site.&nbsp; VLANs are correctly configured but behaving oddly.&nbsp; Here are some verified facts.&nbsp;Connect WiFi to VLAN A SSID = Get VLAN A DHCP (good)Connect WiFi to VLAN B SSID = Get VLAN B DHCP (good)Connect CAT cable to VLAN A +&nbsp;Ping Printer on VLAN B = works (good - there's a firewall rule allowing this)Connect CAT cable to VLAN A +&nbsp;Print to Printer on VLAN B = works (good)Connect WiFi to VLAN A SSID + Ping Printer on VLAN B = works (good)Connect WiFi to VLAN A SSID + Print to Printer on VLAN B = does not work! (bad)&nbsp;What the heck?&nbsp; Everything on the physical network operates as expected.&nbsp;I think I'm running these APs with mostly default settings with each SSID in bridge mode.&nbsp; What could be causing this?

Karthik_ · Answer

Hi&nbsp;Ashkaan&nbsp;&nbsp;1. Are you facing the issue only when the printer and the laptop is connected to the same Access Point but with different VLAN SSIDs ?2. Try connecting the printer and laptop to two different Access Points if you have one.3. And check whether the firmware is upto date V10.4.0.5https://www.netgear.com/support/product/wax630e#download

Ashkaan · Answer

Does anyone have any ideas or questions?

abacqdghfth · Answer

Here are some thoughts ?AP&nbsp; tags packets from wireless (802.11) to wired 802.3 with VLAN Aand expects packets from wired to wireless to also reach AP VLAN A&nbsp;&nbsp;Connect Wired PC to VLAN A SSID + Print to Printer on VLAN B = Good - Static Route configured.Connect WiFi to VLAN A SSID + Print to Printer on VLAN B = does not work! (bad)&nbsp;1) What is port config where AP is connected ?2) What is port config where PC was connected directly on wired side ?3) who (switch or router)&nbsp; is converting control packets from printer that come tagged with VLAN B to VLAN A before it reaches the AP ?&nbsp;Port where AP is connected should be a trunk port and static route configured on switch or gateway should make sure packets to clients in this SSID&nbsp;WAX630A will tag VLAN A SSID packets from wireless clients as VLAN A.for the reverse direction, who will convert VLAN B (printer control packets)&nbsp; to VLAN A ?&nbsp;&nbsp;&nbsp;&nbsp;

Ashkaan · Answer

Thanks for the response!1) The port is configured as a trunk.&nbsp; VLAN A is untagged and VLAN B is tagged.2) It was untagged VLAN A.&nbsp; No direct access to VLAN B.&nbsp; Just a firewall rule allowing this type of traffic between A and B.3) All firewall rules are in the firewall (pfsense).&nbsp; However, the pfsense is not aware of the difference between WiFi and hard-wired.&nbsp; Again, the hard wire on VLAN A works, but the WiFi on VLAN A doesn't.There are no static routes (other than what the pfsense creates by default when making the firewall rules).&nbsp; They are not necessary for the packets to land where they are supposed to (as demonstrated by the hard-wire test).

Ashkaan · Answer

Any ideas?

Forum Discussion

WAX630E: VLANs Not Behaving Correctly

6 Replies

Related Content

WAX630e redundancy

WAX630 Guest WiFI setup

WAX630E Firmware Update Fail

wax630 web interface white screen

RAXE300 Not Port Forwarding Correctly?

NETGEAR Academy

ProSupport for Business