Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help with VLAN design


  • Please log in to reply
3 replies to this topic

#1 silverwolf308

silverwolf308

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Lincoln, NE
  • Local time:06:32 AM

Posted 09 April 2015 - 09:43 AM

I am new to VLAN architecture and need expert advise.

 

Environment:

Router:               Sonicwall TZ105                            192.168.110.1  Connected to port 39

Switch:               Netgear GS752TP                          192.168.110.12

 

Wireless AP:      EnGenius EAP 300 Wireless AP   192.168.110.8  Connected to port 34

                           EnGenius EAP 300 Wireless AP   192.168.110.9  Connected to port 35

 

Objective:  Create a VLAN for guest wireless network using subnet 192.168.250.0/24 that is isolated from the main network at 192.168.110.0/24.

 

Notes: The EnGenius supports isolation but, when enabled, connected clients can no longer access the router at 192.168.110.1 and do not receive DHCP.

 

This guest wireless environment will consist of lots of clients coming and going.  To support that DHCP demand a separate /24 subnet with a short lease is desired.

 

I have setup Sonicwall Guest Services according to the advice here. http://adminmatt.blogspot.com/2010/07/sonicwall-guest-services-with-third.html

 

The guest wireless on both APs has been assigned VLAN4.  I suspect I just need to setup the switch with the proper VLAN4 but have not been successful in configuring that interface. 

 

Thoughts?  Am I on the right track?  What am I doing wrong (aside from cross vendor implementation)?

 

Silverwolf308


Edited by silverwolf308, 09 April 2015 - 09:59 AM.


BC AdBot (Login to Remove)

 


m

#2 techmate5

techmate5

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:02 PM

Posted 15 July 2015 - 02:08 AM

Hi,

 

Guest vlan [ 192.168.250.0/24] will not be able to communicate with router.

all devices connected to guest vlan will try to communicate with router on 192.168.110.1 [ gateway ]

There wont be communication as both have different subnet



#3 techmate5

techmate5

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:02 PM

Posted 15 July 2015 - 02:20 AM

There is  a solution for this but i am not sure your router supports it.

 

The router lan interface 192.168.110.1 in this case, needs to be divided in to sub interfaces.

 

so there would be two sub interfaces on a single physical interface

 

sub-int 1  ip add 192.168.110.1/24

sub-int 2 ip add 192.168.250.1/24



#4 Wand3r3r

Wand3r3r

  • Members
  • 2,027 posts
  • OFFLINE
  •  
  • Local time:04:32 AM

Posted 15 July 2015 - 09:52 AM

Does not appear that unit supports sub interfaces.

 

I would suggest you reevaluate your objectives/requirements.  You do not require a separate ip scope if using vlans. You simply put your guest network in one vlan and your private network in another.  Both vlans exist on the switch port connecting to the sonicwall.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users