A bit more background info. Default vlan carries traffic for IP 192.168.70.x assigned by our Windows 2008 R2 DC.
The IP address of the EAP9550 AP is 192.168.70.119 and pings OK. I have assigned 172.16.0.1 to interface 1 on the UTM and pings fine from 192.168.70.86. Also, Interface 1 in the UTM is assinged 192.168.70.1 and is the default gateway for 192.168.70.x. I will try the static IP suggestion to see if I can a least ping 176.16.0.1. I'll be back,
No luck pinging any 172.16.0.x (corrected address, I typed 176 before, sorry). What I would like is for the UTM10 Router to hand off addresses from the 172 to any client connected that the EAP9550's SSID on VLAN 2. The problem is I have three switches in the middle.
Ok, Disabling Inter-VLAN routing on the UTM10 isolates the T60 from my VLAN 1 (192.168.70.x) and still have access to the internet. This is exactly what I need. I just need to move to the next switch, configure the ports and test before adding the EAP9550 Access point. So far so go. Thanks for you help. I will write back one I finish the config.
Ok, un-did everything and I'm starting from scratch so I don't get too confused.
Here is what I have done so far:
Netgear UTM10 : Added VLAN ID 2. Port 1 is member. Assigned 172.16.0.1/ 24 and enabled DHCP giving out .20 to .30 for testing.
Cisco WAP4410N: Access point. Added second SSID and assigned it VLAN 2.
Dell PS3548P: Created VLAN 2, Changed Port e1 (where WAP4410N connects) to General. On VLAN membership, I have e1 and e46 (connects to UTM10). Same settings as e1 and both at Tagged.
ThinkPad T60: Assigned 172.76.0.100/24 to Wireless Adapter and joined new SSID. Can ping successfully 172.16.0.1
Can successfully ping 172.16.0.1 and access internet with static IP, when I change T60 to DHCP, it does not get address from UTM. Thought?
Ok, something interesting. I followed your advise and looked at DHCP IPv4 Interface Parameters. I added a hostname like "GuestNet" and assignd it to VLAN 2 and long and behold, the laptop got an address. What should I place in there?
Ok, got everything work. For the visitors's benefit, here is what I did!
EAP9550 Access point: Added second SSID and assigned VLAN 2
1st FS726TP : Created VLAN 2 and and set ports connecting the AP and Uplink and TAGGED
2nd FS726TP: Created VLAN 2 and added Uplink port from 1st FS726TP and Uplink to PC3548P as TAGGED
BTW, both FS726TP are set as IEEE 802.1Q VLAN and not Port-Based VLAN.
PC2548P: Added VLAN ID 2 and set ports connecting 2nd FS726TP and UTM10 router to TAGGED.
Enabled DHCP Sooping and added ONLY VLAN 2. For some reason, if I add both VLAN 1 (default) and VLAN 2, computers on the default VLAN 1 could not get DCHP addresses.
Made ports connecting UTM10 and 2nd FS726TP as trusted.
.I think that's all I did and have it working.
Follwing the same steps, I added a second AP (WAP4410N), created a second SSID and assiged VLAN 2. Works great.
pd_maine
8 Posts
0
October 24th, 2012 10:00
A bit more background info. Default vlan carries traffic for IP 192.168.70.x assigned by our Windows 2008 R2 DC.
The IP address of the EAP9550 AP is 192.168.70.119 and pings OK. I have assigned 172.16.0.1 to interface 1 on the UTM and pings fine from 192.168.70.86. Also, Interface 1 in the UTM is assinged 192.168.70.1 and is the default gateway for 192.168.70.x. I will try the static IP suggestion to see if I can a least ping 176.16.0.1. I'll be back,
Thanks
PD
pd_maine
8 Posts
0
October 24th, 2012 12:00
No luck pinging any 172.16.0.x (corrected address, I typed 176 before, sorry). What I would like is for the UTM10 Router to hand off addresses from the 172 to any client connected that the EAP9550's SSID on VLAN 2. The problem is I have three switches in the middle.
pd_maine
8 Posts
0
October 25th, 2012 14:00
Ok, Disabling Inter-VLAN routing on the UTM10 isolates the T60 from my VLAN 1 (192.168.70.x) and still have access to the internet. This is exactly what I need. I just need to move to the next switch, configure the ports and test before adding the EAP9550 Access point. So far so go. Thanks for you help. I will write back one I finish the config.
pd_maine
8 Posts
0
October 25th, 2012 14:00
Ok,
un-did everything and I'm starting from scratch so I don't get too confused.
Here
is what I have done so far:
Netgear
UTM10 : Added VLAN ID 2. Port 1 is member. Assigned 172.16.0.1/ 24 and enabled
DHCP giving out .20 to .30 for testing.
Cisco
WAP4410N: Access point. Added second SSID and assigned it VLAN 2.
Dell
PS3548P: Created VLAN 2, Changed Port e1 (where WAP4410N connects) to General.
On VLAN membership, I have e1 and e46 (connects to UTM10). Same settings as e1
and both at Tagged.
ThinkPad
T60: Assigned 172.76.0.100/24 to Wireless Adapter and joined new SSID. Can ping
successfully 172.16.0.1
Can successfully ping 172.16.0.1 and access internet with static IP, when I change T60 to DHCP, it does
not get address from UTM. Thought?
Thanks
PD
pd_maine
8 Posts
0
October 25th, 2012 14:00
Edit: should be PC3548P not PS3548P. Sorry
pd_maine
8 Posts
0
October 25th, 2012 14:00
Ok, something interesting. I followed your advise and looked at DHCP IPv4 Interface Parameters. I added a hostname like "GuestNet" and assignd it to VLAN 2 and long and behold, the laptop got an address. What should I place in there?
pd_maine
8 Posts
0
October 26th, 2012 10:00
Ok, got everything work. For the visitors's benefit, here is what I did!
EAP9550 Access point: Added second SSID and assigned VLAN 2
1st FS726TP : Created VLAN 2 and and set ports connecting the AP and Uplink and TAGGED
2nd FS726TP: Created VLAN 2 and added Uplink port from 1st FS726TP and Uplink to PC3548P as TAGGED
BTW, both FS726TP are set as IEEE 802.1Q VLAN and not Port-Based VLAN.
PC2548P: Added VLAN ID 2 and set ports connecting 2nd FS726TP and UTM10 router to TAGGED.
Enabled DHCP Sooping and added ONLY VLAN 2. For some reason, if I add both VLAN 1 (default) and VLAN 2, computers on the default VLAN 1 could not get DCHP addresses.
Made ports connecting UTM10 and 2nd FS726TP as trusted.
.I think that's all I did and have it working.
Follwing the same steps, I added a second AP (WAP4410N), created a second SSID and assiged VLAN 2. Works great.
Thanks for your help.
PD