Dear All,
sorry for writing you in English but by German is not good enough.
My small firma has 1 Lancom Router 1781 connected to a fiber modem and a switch.
Through 2 different VLAN I configured the “intranet” network (all cabled connection + Wifi1) and a wifi guest network (Wifi1-2) which can only access the internet. I do know I could do the same using BRG group and different tags but I need VLAN (see below).
I would like to connect another access point extending both the intranet and the guest wifi network.
On the 1781 I set-up the following VLAN
INTRANET: port LAN1, WLAN-1
GUEST: port LAN2, WLAN-1-2
LAN1 (which refers to ETH3), tagging mode never, allow all VLAN yes, port ID 1
LAN2 (which refers to ETH2) tagging mode ingress-mixed, allow all VLAN yes, port ID 2
WIFI1 tagging mode never, allow all VLAN yes, port ID 1
WIFI1-2 tagging mode never, allow all VLAN no, port ID 2
On the second access point (Lancom 321-agn) I set-up 2 IP Networks assigning VLAN=1 to the Intranet and VLAN=2 for the guest. Obviously VLAN ID are the same as in 1781.
VLAN configuration parameters are:
INTRANET: port LAN1, WLAN-1
GUEST: port LAN1, WLAN-1-2
LAN1, tagging mode mixed, allow all VLAN yes, port ID 1
WIFI1, tagging mode never, allow all VLAN yes, port ID 1
WIFI1-2, tagging mode never, allow all VLAN no, port ID 1
DHCP setting are:
INTRANET: client mode
GUEST: ????
I have no problem at all using the intranet on the secondary access point. The 1781 assigns correctly the IP address and I can see the whole network.
I can’t access the web using the guest access on the secondary access point. I tried to use DHCP client mode and the DHCP server on the 321 but nothing changes. No connection, no IP address, nothing…
Any idea?
Thanks in advance
Giulio
VLAN Guest Access on 2nd Access Point
Moderator: Lancom-Systems Moderatoren
Re: VLAN Guest Access on 2nd Access Point
Hello Giulio,
GUEST: port LAN1, WLAN-1-2
So long.
What kind of switch is this (possibly smart-managed)? And how is the 1781 and the 321 connected to each other .... through the switch?g.idone hat geschrieben:My small firma has 1 Lancom Router 1781 connected to a fiber modem and a switch.
Normally used is a VLAN-trunk, ie. all VLANs run via 1 interface/port (LAN1):g.idone hat geschrieben:INTRANET: port LAN1, WLAN-1
GUEST: port LAN2, WLAN-1-2
GUEST: port LAN1, WLAN-1-2
Is there a specific reason why do you separate your interfaces here?g.idone hat geschrieben:LAN1 (which refers to ETH3)
LAN2 (which refers to ETH2)
No, of course it should port id 2 here!g.idone hat geschrieben:WIFI1-2, tagging mode never, allow all VLAN no, port ID 1
No, the 1781 is the one and only DHCP-server in your net. So please turn every DHCP off (except for both DHCP at the 1781)!g.idone hat geschrieben:DHCP setting are:
INTRANET: client mode
GUEST: ????
So long.
Re: VLAN Guest Access on 2nd Access Point
This is exactly the second scenario you wrote in your previous post.
Lancom Router 1781 with 2 wifi networks (intranet and guest) is directly connected to Lancom AP (321-agn). No switch.
My goal is to have 2 wifi networks also on the second AP.
Actual configuration is the following:
The 2 switch are VLAN-trunked: Intranet is set on VLAN1. I confirm that all VLANs includes LANx interface.
The reason why I separeted the interfaces is that I use VLAN only for this specific connection (1781 <--> AP). Not having a managed switch I decided to tag packets just on the ETH port connected to the AP. Up to know is working.
__________________________________
I don't know wheter my problem refers to VLAN or IP addressing....
This is my latest tentative configuration (which differs from my first post):
Router 1781 IP Networks:
INTRANET (10.30.0.x, VLAN=1, BRG=1, tag=0)
GUEST (10.30.10.x, VLAN=2, BRG=2, tag=1)
Router 1781 VLAN config
INTRANET: LAN1, LAN2, WLAN-1
GUEST: LAN1, LAN2, WLAN-1-2
LAN1 (which refers to ETH3), tagging mode never, allow all VLAN yes, port ID 1
LAN2 (which refers to ETH2) tagging mode mixed, allow all VLAN yes, port ID 1
WIFI1 tagging mode never, allow all VLAN yes, port ID 1
WIFI1-2 tagging mode never, allow all VLAN no, port ID 2
L321-agn IP Networks
INTERNET: static ip address 10.30.0.4, VLAN=1, BRG=1, tag=0)
INTRANET_AP: 10.30.11.x, VLAN=1, BRG=1, tag=0)
GUEST_AP: 10.30.12., VLAN=2, BRG=2, tag=1)
DHCP active for INTRANET_AP and GUEST_AP
L321-agn VLAN Config
INTRANET: port LAN1, WLAN-1
GUEST: port LAN1, WLAN-1-2
LAN1, tagging mode mixed, allow all VLAN yes, port ID 1
WIFI1, tagging mode never, allow all VLAN yes, port ID 1
WIFI1-2, tagging mode never, allow all VLAN no, port ID 2
AP Wifi clients are able to receive a valid IP address but no trafic is allowed (both intranet and guest).
I thought I could configure the 1781 as the only DHCP both for AP Intranet and AP Guest client but is not working.
Thanks
Giulio
Lancom Router 1781 with 2 wifi networks (intranet and guest) is directly connected to Lancom AP (321-agn). No switch.
My goal is to have 2 wifi networks also on the second AP.
Actual configuration is the following:
The 2 switch are VLAN-trunked: Intranet is set on VLAN1. I confirm that all VLANs includes LANx interface.
The reason why I separeted the interfaces is that I use VLAN only for this specific connection (1781 <--> AP). Not having a managed switch I decided to tag packets just on the ETH port connected to the AP. Up to know is working.
You are right it should be and it is port ID 2. Although nothing changes.
g.idone hat geschrieben:
WIFI1-2, tagging mode never, allow all VLAN no, port ID 1
No, of course it should port id 2 here!
__________________________________
I don't know wheter my problem refers to VLAN or IP addressing....
This is my latest tentative configuration (which differs from my first post):
Router 1781 IP Networks:
INTRANET (10.30.0.x, VLAN=1, BRG=1, tag=0)
GUEST (10.30.10.x, VLAN=2, BRG=2, tag=1)
Router 1781 VLAN config
INTRANET: LAN1, LAN2, WLAN-1
GUEST: LAN1, LAN2, WLAN-1-2
LAN1 (which refers to ETH3), tagging mode never, allow all VLAN yes, port ID 1
LAN2 (which refers to ETH2) tagging mode mixed, allow all VLAN yes, port ID 1
WIFI1 tagging mode never, allow all VLAN yes, port ID 1
WIFI1-2 tagging mode never, allow all VLAN no, port ID 2
L321-agn IP Networks
INTERNET: static ip address 10.30.0.4, VLAN=1, BRG=1, tag=0)
INTRANET_AP: 10.30.11.x, VLAN=1, BRG=1, tag=0)
GUEST_AP: 10.30.12., VLAN=2, BRG=2, tag=1)
DHCP active for INTRANET_AP and GUEST_AP
L321-agn VLAN Config
INTRANET: port LAN1, WLAN-1
GUEST: port LAN1, WLAN-1-2
LAN1, tagging mode mixed, allow all VLAN yes, port ID 1
WIFI1, tagging mode never, allow all VLAN yes, port ID 1
WIFI1-2, tagging mode never, allow all VLAN no, port ID 2
AP Wifi clients are able to receive a valid IP address but no trafic is allowed (both intranet and guest).
I thought I could configure the 1781 as the only DHCP both for AP Intranet and AP Guest client but is not working.
Thanks
Giulio
GID