NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Internet Lost when activating VLAN/Bridge - By VLAN Tag Group
Hi, I have a WIFI6 Nightwak RAX120 Router. I want to create some VLANS on my private network and activated the VLAN/Brige option. I created an extra VLAN 30 under "By VLAN Tag Group" and pushed A...
Hi kurt,
Thanks for your time spent on a Sunday! I hope you spent enough time to your four dog! They diserve it! :-)
Quick reply and some extra clarifications from my side:
1. Splitting IPTV from network is EXACTLY what I want to do as well.
2. But the issue I haveis that as soon as I create VLAN Tagged Group with name IPTV (VLAN30), next to the default VLAN10 (Internet), my internet connection drops on my RAX120.
3. I create the VLAN30 on Port 3 and then I go from this port 3 to a VLAN30 tagged port onnmy managed swith, where I also configure 4 VLAN30 untagged ports where my decoders are connected.
4. The reson why I do not use 1 and 2 is becasue I indeed have those already in aggregtion towards my QNAP NAS where I have two NICs also in aggregation. Works fine by the way.
So far on the RAX120 - Switch VLAN questions.
The second challenge is then the sepertion of my wireless SSID's:
1. I just today also installed a second WAX610 in my network. On my two WAPs I created three SSID's. Each with another VLAN ID. One for my normlinternat, onefor guest internet and one for IoT devices.
2. I want those different SSID seperated so that devices connected to one SSID can NOT communicate with the other SSD's.
3. But unfortunately this also doesn't work.
YEsterday I resetted my whole switch again and tried VLAN by PORT instead of 802.1Q VLAN
I aslo disabled the VLAN/Bridge on RAX120 and I just assigned ports for INTERNET (VLAN ID 1) and PORTS for IPTIV (VLAN 30).
Not sure if this is the best way forward...
Anyway, with this setting my SSID seperation is also NOT working....
I'm getting desperate. I belie for gutu like you this is a children game, but I simply can't get it to work.
My setup is hoeve rnot tht much rocket science IT think:
1. Cable Modem (ADSL)
2. RAX120 Router
3. 16-port Managed swith (TP Link) with IGMP Snooping enabled
4. 2 WAX610 (connected to to POE ports of the sitch)
best regards,
Wim
wimvpoel wrote:2. But the issue I haveis that as soon as I create VLAN Tagged Group with name IPTV (VLAN30), next to the default VLAN10 (Internet), my internet connection drops on my RAX120.
Are these the two VLAN required by your ISP for Internet and for IPTV?
Assume you had Internet before, there is nothing you need to change on the config for the Internet (probably pure IP does not come in tagged at all). as mentioned befre, at the risk or repeating: This is an ISP thing which is completely unrelated to the VLAN you intend to run on your LAN. There is no need to change anything on the Internet entry there at all. Only the IPTV part (as per the ISP IPTV VLAN) must be configured.
Is this confirmed that the IPTV VLAN does go through on the pass-throug/bridge setting of the ISP box?
wimvpoel wrote:3. I create the VLAN30 on Port 3 and then I go from this port 3 to a VLAN30 tagged port onnmy managed swith, where I also configure 4 VLAN30 untagged ports where my decoders are connected.
Not at all.
You need to configure the ISP IPTV VLAN to be bridged to a single port on the Netgear switch. This VLAN will come to this port untagged. A cable connection from this port to another untagged port on this VLAN 30 on the switch (similar config like the media players), VLAN 30, [U]ntagged, PVID 30.
wimvpoel wrote:4. The reson why I do not use 1 and 2 is becasue I indeed have those already in aggregtion towards my QNAP NAS where I have two NICs also in aggregation. Works fine by the way.
Of course ... I'm still monitoring the QNAP forum for specific network issues and answering sometimes. 8-)
wimvpoel wrote:The second challenge is then the sepertion of my wireless SSID's:
1. I just today also installed a second WAX610 in my network. On my two WAPs I created three SSID's. Each with another VLAN ID. One for my normlinternat, onefor guest internet and one for IoT devices.
2. I want those different SSID seperated so that devices connected to one SSID can NOT communicate with the other SSD's.
3. But unfortunately this also doesn't work.
Of course - there is no router able to handle these additional network, no IPv4 network, no DHCP server, no many-to-one NAT routing to the public IP address. That's why I said these routers are not fit for this purpose.
wimvpoel wrote:YEsterday I resetted my whole switch again and tried VLAN by PORT instead of 802.1Q VLAN
Why oh why? If you intend to run multiple VLANs over the same network port, you need to operate 802.1q. and please for your comfort stick with the default VLAN 1 for our network...
wimvpoel wrote:I aslo disabled the VLAN/Bridge on RAX120 and I just assigned ports for INTERNET (VLAN ID 1) and PORTS for IPTIV (VLAN 30).
Not sure if this is the best way forward...
Configure the router VLAN grups accordingly - in my example the ISP side Internet runs on VLAN 10, the IPTV network does run on VLAN 99. One does have to configure only the Internet VLAN ID (if applicable) otherwise leave it on 0, and add one entry for IPTV with the VLAN ID where the IPTV is in place, and put it to a spare port on your router. Once done, direct connect or patch one media player/STB to this port. this must run first.
wimvpoel wrote:Anyway, with this setting my SSID seperation is also NOT working....
As already explained above - can't lack of router capabilities.
wimvpoel wrote:My setup is hoeve rnot tht much rocket science IT think:
1. Cable Modem (ADSL)
2. RAX120 Router
3. 16-port Managed swith (TP Link) with IGMP Snooping enabled
4. 2 WAX610 (connected to to POE ports of the sitch)
In my opinion, the RAX120 does not add any added value (except of WiFi 6). it can't handle the additional networks for guest and IOT stuff.
Where I have to mention that such an isolated IoT network is ONLY for IoT which is purely Internet/cloud drive. Anything where eg. a local controller is on the network and where an app on the mobile is used for controlling eg. the lights - this is utterly useless, as you certainly don't want to change the wireless network on your mobile before e.g dimming the lights...
And then again, the idea of splitting IPTV and your normal LAN/Internet - you will loose capabilities for play-to by Google Cast or Apple Airplay.
in my opinion, you will loose capabilities over running your ISP provided router where I assume the Internet access LAN and the IPTV traffic are merged on one network, one IP subnet.
Adding the missing screenshot of the example from above:
Thanks!
So yes ... mmmmm... I believe I will need some thinking time now.
You clearly made some point now which will force me to rethink my strategy. E;G. the sense of wanting to separate the IoT SSID fro lthe other SSIDs (I have indeed an app on my android phone to control the airco units I have in the house ... )
But, on the other side, I also don't wat to spent further money in replacing e.g. the RAX120 to buy a router that has VLAN capability on the LAN side. (Ubiquiti Dream Machine PRO e.g.). I would believe (hope!) that the components I have in house, should enable me to make sure I've performant, secure LAN and WIFI network where IPTV doceders are also working when I plug them into my switch (plugging decoders directly in the Router of ISP Modem/Route is unfortunately NOT an option seen the loccation they are).
The screenshot you sent is excatly what I did on the RAX125. Only difference is that the VLAN for IPTV is 30 for the ISP I have. BUT... as I said... when I click APPLY on this screen, my RAX120 drop the INTERNET PPPoE connection with the ISP modem/router. Not sure if this is something to do with the ISP, or is this a Netgear RAX120 bug, or ....
In two weeks from now my ISP will come install Fibre at home, so I hope to speak then to a technical expert of the ISP... I'll check with them to see if they can advise....
Many thanks for you assistence....
To be continued :-)
Enjoy your weekend!
Could be indeed a router issue along with the feature and PPPoE.
Well possible there is no more PPPoE once you get fiber anyway.