VLan's

PBComputer

PBComputer

Well-Known Member
Reaction score
538
Location
Carlisle, Cumbria, UK
I am after some advice how to tackle this issue. I'm trying to setup a vlan's in the offfice.

I have the following hardware.

1 x Billion router (BiPac 8900X R3) (5 Port)
2 x Netgear Managed Switch GS724T (24 port)
5 x Netgear GS108T (8 Port)
5 x Unifi AP's

I'm looking at creating the following vlans (8 total)

  • Management
  • Repairs
  • Personal
  • Infected-Network
  • PCI-DSS
  • Network-Lab
  • Other-Business
  • Guest

Since my router only has 5 ports. I think I might have a issue there? I am also trying to just use one port of the router for management, then do the vlans on the switch.

I'm looking at ways around it without a server running DHCP.

Hope this makes some sense?

It's been on my to do list for the last 6 months.
 
Last edited:
Not familiar with the router you're using but it just needs to support vlans and have the ability to create different dhcp subnets for each vlan. No way around this. If it does then you can certainly pull off what you've proposed regardless of how many ports are on the router.

Netgear layer 3 switches use pvid for ingress vlan designations (endpoints like pc's and printers) and you'll need to be sure you trunk the 2 switches together and also trunk the unifi access points. It would help if we had a layout map of how everything will be connected.

We primarily use ubiquiti edgerouters to do these types of setups. You can pick one up on Amazon for pretty cheap.
 
If your router supports it, you want to create sub interfaces on the port connected to the switch. Set a sub interface up for each vlan. The sub interface will be the default gateway for each vlan. Tag the switch port on the netgear connected to the router. Untag all other ports and assign the pvid (vlan) you want the device to be in. You'll want to tag the port for the unifi ap as well and set the vlans up in the controller.
 
@NETWizz wrote a great tutorial about VLAN'ing. Command wise it references Cisco IOS but the idea is the same as other devices.

I think the big thing is to draw out a logical map of what you want and then see how to fit the physical pieces together. Layer 2 will do VLAN's. It would be nice to use IP's as well but you can still achieve the same results with just VLAN tags. Keeping LAN segments apart.
 
You must log in or register to reply here.

Similar threads

thecomputerguy
Can I use a UDM-Pro as a controller ONLY?
Replies
1
Views
282
phaZed
phaZed
HCHTech
Narrowing down a internet issue
Replies
5
Views
526
YeOldeStonecat
YeOldeStonecat
Diggs
Can't close my laptop lid.....!
Replies
14
Views
257
britechguy
britechguy
GTP
Activate any version of Windows, Windows Server, Office etc...
Replies
5
Views
711
fincoder
fincoder
thecomputerguy
Oprah says, "and you get a violation, and YOU get a violation, and YoU get a ViOlation!"
Replies
11
Views
1K
DRPCNZ
DRPCNZ
Back
Top