This topic has been marked solved and closed to new posts due to inactivity. We hope you'll join the conversation by posting to an open topic or starting a new one.
First, all my networking knowledge has been learned through trial and error and the internet. With that said, I have taken on quite a tasking and am at the end of the road if I can get my GS516TP configured.
First a little explanation of where I am to date. I have two ASUS AC-RT66U routers, one is in the office on port 10 of the GS516TP and the other on the second floor on port 13 of the GS516TP. The AC-RT66u in the office is also directly linked, through the WAN, to my cable modem and basically runs our entire little network. Both AC-RT66Us have guest wireless networks setup exactly the same:
1) Kids Guest and Kids Guest 5G (192.168.2.100 through 192.168.2.105)
2) Adult Guest and Adult Guest 5G (192.168.3.100 through 192.168.3.105)
I use subnetting for access controls on both networks. I am very easitly able to assign rules according to the IP blocks. It works very well (kinda). The RT-AC66U in the office handles all the DHCP for our primary network (192.168.1.100 through 192.168.1.150) as well as the two guest networks. The RT-AC66U on the second floor merely forwards DHCP requests for all three subnets to the RT-AC66U in the office. The main network (192.168.1.100/24) was easy to setupo and worked fine right out of the box with the RT-AC66U in the office setup as a DHCP Forwarder. To get the guest networks to forward DHCP requests to the RT-AC66U in the office, I setup two vlans (vlan14 and vlan15) on both routers and use DNSMasq (through DD-WRT) on the RT-AC66U in the office.
WORKS GREAT when the routers are connected to each other (not going through the GS516TP). Once I put the routers in their actual permanent location and run them through the GS516TP, things go a little haywire. Here is what happens:
1) the main Wireless access (192.168.1.100-192.168.1.150) is unable to get an IP address and it obviously has no internet access.
2) the two guest wireless networks (192.168.3.100 through 192.168.3.105 and 192.168.2.100 through 192.168.2.105) are able to get a proper IP in the subnet but they do not have internet access.
My guess is I haven't configured the GS516TP properly but with my vlan experience of about two days, anything is possible 😉
In the web config for the GS516TP I did the following:
1) Switching/vlan/advance - i created two vlans (vlan14 and vlan15)
2) switching/vlan/vlan membership - I tagged port 10 and port 13 under each vlan (vlan14 and vlan15)
For some reason I think that I should enter something under port PVID configuration but it only allows for one PVID?
i created vlan10 and bridged it with the LAN ports on the RT-AC66Us. Apparently the management vlan1 on the Netgear switch was causing me problems. I couldn't tag vlan1 for the ports I needed on the switch. Once I moved everything to another vlan, went smooth as silk.
Based from your network setup, the Asus AC-RT66U on the second floor that is connected to port 13 of the GS516TP seems to be configured as an access point. Kindly check the following:
a. Since ports 10 and 13 are set as tagged ports on the GS516TP, set the PVID of both ports 10 and 13 to 1.
b. Make sure that the port of the Asus AC-RT66U in the office connected to port 10 of the GS516TP should be set as a tagged port.
c. Make sure that the port of the Asus AC-RT66U on the second floor connected to port 13 of the GS516TP should be set as a tagged port.
Ok, I had a epiphany this morning. Here is where I am. When both the routers are connected to the switch through any port other than port 2, all is well with the main network, but my guest access (vlan14 and vlan15) can't get an IP address. Makes sense because vlan14 and vlan15 are setup on port 2 of the routers. As soon as I connect the routers to the switch through port 2, all goes haywire with the main network (192.168.1.100) but the guest vlans are able to pull IPs, but no internet.
I made a couple assumptions. 1) somehow wl0 and wl1 are bridged internally to vlan1? 2) vlan1 is basically the internet and/or the ethernet ports on the back of the router? br0 is basically vlan1 and eth1 and eth2. Not sure I fully understand this.
Anyway, looking through my switch settings, under routing/vlan/vlan routing, vlan1 shows routed to 192.168.1.3 or basically itself. vlan1 is the management vlan for the switch. So a couple more assumptions, 1) vlan1 on the switch has no bridge to the internet? would make sense to leave this "channel" open strictly for management of the switch. 2) my main network (vlan1, eth1, eth2, and basically anything outside of vlan14 and vlan15, are being routed to 192.168.1.3 for an IP?
Not going to get an IP at the switch....
Does any of this make sense? If so, I need to either 1) change the br0, vlan1, eth1, eth2 to something else or 2) change the vlan the switch uses for management? correct?
once again, any advice, greatly appreciated. Thanks, Dan
I am sorry if my reply to DanaA's post is not clear. My setup is in fact in compliance with DanaA's suggestions. Also, when the RT-AC66Us are connected directly, without the Netgear switch, they are both connected through port 2. Following is my port/vlan setup on the two RT-AC66Us. I would be happy to provide this for the GS516TP but don't know how.
i created vlan10 and bridged it with the LAN ports on the RT-AC66Us. Apparently the management vlan1 on the Netgear switch was causing me problems. I couldn't tag vlan1 for the ports I needed on the switch. Once I moved everything to another vlan, went smooth as silk.
Thanks for the update. I'm glad that creating VLAN 10 and moving everything to VLAN 10 make it work. 🙂
Since your concern has been resolved, I encourage you to mark the appropriate reply as the “Accepted Solution” so others can be confident in benefiting from the solution. The NETGEAR Community looks forward to hearing from you and being a helpful resource in the future!
