NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Question about management vlan for wifi
I had some trouble setting up a netgear switch and AP but all is workign now, so I had some questions about best practices.
We have 3 wifi vlans, and the general office traffic vlan (10) The default on the netgear AP seems to be "untagged vlan" (management vlan is 10)
On the switch I set the 3 wifi vlans to be tagged, and then sent the PVID to 10. Is it better to set the management vlan as tagged, or does it make no difference?
Wondering for the sake of best practices
2 Replies
Hi vlansarehard,
Welcome to our community! :)
As per my understanding is that you want to assign the management VLAN as tagged. We can only assign a Tagged on a specific port and not the whole VLAN itself. Is this what you want to achieve?
Regards,
John
NETGEAR Community Team
For simplicity and the average usage, I'd suggest to stick with the untagged VLAN. Much easier to connect a computer or the like to the same switch port, and get direct admin access. Perfectly sufficient for most.
For more sophisticated networks, dedicated management networks are deployed, the connected devices typically make use of a tagged management VLAN.
For specific security requirements you run the management VLAN tagged to the ports, and operate a dedicated, different VLAN as a "capture all network" where that dedicated VLAN where all unauthorized untagged devices are connected to for further processing.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
