NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

Lippert's avatar
Lippert
Aspirant
Nov 08, 2018

One firewall creating multiple networks that can not see eachother

I would like to configure a network like this:   Using the SRX5308 firewall and a netgear switch with VLAN support.  This should be simple, but i can not find any way in the manual of th...
Hardware
Security
Solutions
Lippert's avatar
Lippert
Aspirant
Nov 09, 2018

What i mean is Two seperate networks. So they will act as they are independent networks going out to the internet seperately but through one firewall. 

Pretty much as the drawing shows. Devices on one network are under no circumstances able to send or receive traffice from other networks without going out through the firewall and hitting the internet first.

 

I just went through the BR500 manual, but it doesn't really show any such configurations. There is a bit aobut firewall rules and VLAN setup but not enough to clearly give an indicatio if the illustrated setup above is possible. 

 

Otherwise i'll have to go with a Cisco AR box as that clearly has the capability.

 

BR

Kristoffer

 

schumaku's avatar
schumaku
Guru - Experienced User
Nov 09, 2018
Lippert wrote:

Pretty much as the drawing shows. Devices on one network are under no circumstances able to send or receive traffice from other networks without going out through the firewall and hitting the internet first.

In my understanding the BR500 (comparably inexpensive) should be able to handle multiple VLAN with dedicated subnetworks - in both the Web management as well as Insight management mode.

  • Lippert's avatar
    Lippert
    Aspirant
    Nov 16, 2018

    About the BR500 - is there any way of verifying that it is capable of running multiple Vlans?

    Aside from buying one and trying it out? - I've been throuhg the manual but it's not clear to me if that is really an option or not.

     

     

    Best regards

    Kristoffer

     

  • schumaku's avatar
    schumaku
    Guru - Experienced User
    Nov 16, 2018

    Kristoffer,

     

    As of writing, it appears the BR500 is able to handle four VLAN (when I get it right one per switch port!), and just a total of four IP subnets with DHCP services only - three are predefined (admin, guest, IPTV), and one is "freely" available.

     

    The BR5000 5.1.0.14 firmware release notes are very optimistically stating

     

    • VLAN. VLAN with the DHCP server on each subnet is supported.

    The spec'ed 256 VLANs are out of reach - certainly for the next few months - as per some direct communication.

     

    Reads to me like Netear has implemented the same ***** router engine we know to be cumbersome on consumer products like Nighthawk, Orbi, or Orbi Pro.

     

    Aside, it appears they used (uniquely) a Web component from Ali which does establish a connection to AliPay - at least here we got a promise that this component will be pulled. Timer is ticking.

     

    Netgear might want to provide additional information YeZ

     

    Not impressed at all - in fact a 100% failure for now. This BR500 is not ready for prime time, and it does not fit into the Insight environment as intended by the top management johngm please. 

     

    Regards,

    -Kurt

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More