Sidewinder wrote:
Would be easier for us if you could show your network setup as a diagram in something like Visio or even Powerpoint to help us pinpoint your problem(s). VLANs can be quite complicated to setup and as previously mentioned there will be config needed on your switches as well with the physical ports being added to VLAN groups and the setup of trunk ports which transport all data packets (useful when linking 2 switches or the link between a switch and an access pointhopkins35 wrote:
- possibly relevant to your problem).
I can do that, I didn't realise that you can upload diagrams, give me a couple of hours, I've a job to finish, then I'll draw something up in Visio.
Thanks all.
Please Log in or Create an account to join the conversation.
Please Log in or Create an account to join the conversation.
Please Log in or Create an account to join the conversation.
Please Log in or Create an account to join the conversation.
Please Log in or Create an account to join the conversation.
Would be interested to see a screenshot of your VLAN port setup on the 2860.hopkins35 wrote:
A key principle of a port based VLAN setup is that there must be an ingress and egress port, a way in and a way out. So, for example, if you have a PC connected to port 5 and a PC connected to port 4 both on VLAN1, for them to be able to communicate with one another you would need to make sure that both port 4 and port 5 are allocated to that VLAN group. I believe from your diagram that you have another router (2860) plugged into port 6 of your 2860vn+ so port 6 on the 2860vn+ should be allocated to VLANx with a tag of xx (I read somewhere that this should be in the 10s ie. 10, 20, 30, 40 etc), on the 2860 you need to allocate the inbound port to the same VLANx group with the same tag as on the 2860vn+ and do the same for any/all of the ethernet ports on the 2860 that will be connecting to client devices.
Another rule of thumb is that when connecting VLAN aware devices, so I'm thinking of your links between your D-Link switches and your APs here, you should set these as 'trunk' links whereby the switch doesn't add or remove the VLAN tags but sends them unadulterated, obviously you would then setup the SSIDs on the APs to mirror your VLAN setup as mentioned above. Dumb wired devices, like PCs, that don't natively understand VLANS should be plugged into a port of your switch that is part of a VLAN group, don't forget to think about ingress and egress, which port is the data coming in and which port is it going out through and make sure that they're both in the right group and so get tagged appropriately.
I'm no expert but I have a fairly complex VLAN setup myself, think about ingress and egress ports and trunk links and try to make your tags as double figures and see how you get on.
Good luck
Please Log in or Create an account to join the conversation.
Copyright © 2024 DrayTek
