The Blue Interface on the Firewall tag all frames with the ID 15.
On the Switch near all Ports are untagged and in the native VLAN 1.
The "Guest-VLAN" has the VLAN ID 15.
All untagged frames from the Native-VLAN 1 get the ID1 when they reaches Port 22.
So, on the Port 22 who is connected to the AP, the Frames with the ID15 (Guest) and the Frames who get the ID 1 should transmitted to the AP.
On the AP, I set up 2 SSID's.
The Staff-WLAN has the VLAN ID 1 and the Guest-WLAN the VLAN ID 15
But only the Staff-WLAN works. I don't get an IP-Adress when i connected with the Guest-WLAN.
Another Setup on the Access Point:
I'm a Beginner in this topic and English is not my favorite language, so please apologize little mistakes
Do you have any ideas?
Solved! Go to Solution.
I would test connectivity on VLAN 15 by setting a static IP address and then trying to ping the default gateway address for VLAN 15 and any other devices on VLAN 15. If you have connectivity, then move on to the DHCP issue. If there is no connectivity, then continue to troubleshoot as a connectivity issue and not as a DHCP issue.
Is the IPfire device acting as a DHCP server for VLAN 15?
I setting a static IP address but i can't ping the default gateway address for VLAN 15.
Yes, the blue interface of the IPfire acting as a DHCP Server for VLAN 15.
If i plug the cable from the blue Interface directly in my laptop, i get a IP address and all works fine.
But if i plug the cable in G36 and want to connect with the Guest WLAN, i didn't get a IP address.
Is the setup on the switch (Port Mode etc.) correctly?
On the 6248, are ports 15 and 36 in the up status? If you plug your laptop into a port on the 6248 that is set to be untagged for VLAN 15, can your laptop reach the gateway? This would further help identify if the issue is occurring on port 36 or port 22.
"up status" means untagged aren't ?
You can see all port status on the screenshots in my original post.
I will check this tomorrow. Here in Germany is another time
The status as in either up or down. You can use the command # show interfaces status, and it will show you all the interfaces and whether they are down or up.
No, I can't reach the gateway, if i plug my laptop into a port on the switch that is set to be untagged for VLAN 15.
Sorry, where i have to use the command # to show the interface status?
I don't know what you mean...
The command line of the switch can be accessed through a Telnet session. You can use a program such as Putty, to initiate the connection.
With putty running, ensure that the connection type is set to telnet. Enter the IP address of the switch, and then click open. The session should start and allow you to enter the show command.
I would also like to take a look at the current config on the switch.
Console# show run
Be sure the putty session is being saved to a text file.
I think a good test would be to change port 3/g36 to be the same as port 3/g22.
interface ethernet 3/g36
switchport mode general
switchport general ingress-filtering disable
switchport general allowed vlan add 15 tagged
Try that out and see if the behavior changes at all.