Orbi pro (SXK80) behind UDM router | Dynamic Vlan via radius

Question

Dear community, dear Netgear Team,&nbsp;I set up a UniFi UDM as a router with a radius server. Behind the UDM, I am running a Orbi Pro (SXK80 and a SXS80) on firmware 3.3.0.122 as an AP. The challenge is that I would like to dynamically assign a vlan to Orbi clients based on the radius authentication on the UDM.&nbsp;For now, the authentication works, but the ips assigned to clients do not match the correct vlan address range, even though the tcpdump on the UDM indicates the right vlan in the accept message. so it seems the Orbi pro just doesn’t “understand” / “convert” / “translate” the radius reply correctly to its clients.&nbsp;I found some documentation on dynamic vlan for other netgear products but non of it for the Orbi Pro. The configurations mentioned for other products (dynamic vlan, …) are not available in the Orbi pro Settings, so I cannot select anything but the radius ip, port and shared key.&nbsp;If I select a vlan, only the selected address range is used, even if the radius credentials and the tcpdump would suggest a different address range.&nbsp;How can I configure the Orbi Pro to dynamically select a vlan?&nbsp;Thanks

BruceGuo · Answer

Thanks for sharing your opinion. I know the feature. I will check with internal teams if we can do it and what's the plan.
&nbsp;
&nbsp;

BruceGuo · Answer

Hi
&nbsp;
We have been discussing the feasibility of impementing in Orbi Pro mesh system. We still don't have the anwser yet. We will keep your post.&nbsp;
&nbsp;
Bruce

Filis · Answer

The tcpdump&nbsp;21:46:58.681381 IP (tos 0x0, ttl 64, id 53332, offset 0, flags [none], proto UDP (17), length 221)[ip address router].1812 &gt; [ip address SXK80].44930: [udp sum ok] RADIUS, length: 193Access-Accept (2), id: 0x17, Authenticator: [mac address]Acct-Interim-Interval Attribute (85), length: 6, Value: 01:00:00 hours0x0000: 0000 0e10Tunnel-Type Attribute (64), length: 6, Value: Tag[Unused] VLAN0x0000: 0000 000dTunnel-Medium-Type Attribute (65), length: 6, Value: Tag[Unused] 8020x0000: 0000 0006Tunnel-Private-Group-ID Attribute (81), length: 4, Value: 300x0000: 3330User-Name Attribute (1), length: 11, Value: users0x0000: [digits]Vendor-Specific Attribute (26), length: 58, Value: Vendor: Microsoft (311)Vendor Attribute: 17, Length: 50, Value: ..&amp;...P...I..o.nd.^e.U...k1.d.[an..@lQ.........C..0x0000: [8 blocks of 4 digits]0x0010: [8 blocks of 4 digits]0x0020: [8 blocks of 4 digits]0x0030: [4 blocks of 4 digits]...

schumaku · Answer

Not aware the Orbi Pro AX has this feature on board.
&nbsp;
BruceGuo&nbsp;please.

Filis · Answer

Thank you, schumaku.&nbsp;BruceGuo&nbsp;&nbsp;I was hoping there is an option to do something like this with the UDM as a router and OrbiPro (SKX80) as a wifi access point?&nbsp;https://www.downloads.netgear.com/files/answers/Dynamic%20VLAN%20Assignment%20using%20RADIUS.pdfhttps://www.youtube.com/watch?v=l2ivHDIV50ghttps://www.youtube.com/watch?v=AJcKsGtyfHo&nbsp;

Forum Discussion

Orbi pro (SXK80) behind UDM router | Dynamic Vlan via radius

6 Replies

Related Content

SXK80 - Firmware Version 4.2.3.102 bug

About SXK80

SXK80 - How to Disable 2.4G WIFI

SXK80 3.3.0.122 Fast Roaming Option Gone

WAX206 Dynamic DNS

NETGEAR Academy

ProSupport for Business