Posted: Wed Oct 12, 2011 14:25 Post subject: Subnet question...
Since I'm not used to working with subnets I feel it's best to post a question here first to get valuable input, so, excuse me if this is rated as "basic" for you.
My question is really both - is it possible and if yes, how?
For various reasons I need to set up a subnet to separate a couple of devices from each other.
To make things easier to explain let's say that I have the following;
1 x DD-WRT router
Main network;
1 x Computer (cable)
1 x iPhone (WLAN)
Subnet;
1 x NAS (cable)
1 x Multimedia player (cable)
Can I set up the DD-WRT router to support the following;
Main network, work as a normal DD-WRT factory default setup (with WAN, DHCP (192.168.1.x) and a WLAN etc.)) and the subnet on 192.168.100.x (with DHCP and WLAN) using cables/ports on the router.
If this is possible, how would I configure this the easiest way?
You didn't mention your hardware or firmware. If you have a Broadcom based router then you can do this by moving ports into a new VLAN, assign the new VLAN an IP on the Networking page, and adding a Multiple DHCP pool for it. _________________ Read the forum announcements thoroughly! Be cautious if you're inexperienced.
Available for paid consulting. (Don't PM about complicated setups otherwise)
Looking for bricks and spare routers to expand my collection. (not interested in G spec models)
Thank you for the answer! Well, actually I have several routers (with DD-WRT firmware). I would like to use one of my WNDR3700's since they have Gigabit and USB etc.
WNDR3700 is Atheros-based, is that a problem? I can't find any VLAN tab in my setup (although I'm using the withdraw 17461 firmware so maybe that's why?).
You need Broadcom hardware for port based VLAN's. _________________ Read the forum announcements thoroughly! Be cautious if you're inexperienced.
Available for paid consulting. (Don't PM about complicated setups otherwise)
Looking for bricks and spare routers to expand my collection. (not interested in G spec models)
A list of tested models is on the VLAN Support wiki page. _________________ Read the forum announcements thoroughly! Be cautious if you're inexperienced.
Available for paid consulting. (Don't PM about complicated setups otherwise)
Looking for bricks and spare routers to expand my collection. (not interested in G spec models)
Just wanted to confirm 802.1Q tagged VLANs do work.
I have my e3000 vlan'ed up with a Netgear Prosafe 8 port.
Example, (Ports are backwards, like previously stated)
Port 2 is my trunk between the two, so Port 3 on the GUI is tagged and VLAN 15 is selected. VLAN 1 is still selected as I still need to communicate with the switch using Netgear's awesome utility.
Port 2 on my Netgear is tagged for port 1 and 15. The devices I want to give access to are on port 3 and port 4. Both ports have a PVID of 15 and are Untagged for VLAN 15 only, VLAN 1 is blanked.
It seems DDWRT treats VLANs like a directly connected interface and sets a route entry as you can pass traffic through by default. I wanted isolation to stream HD via my HDHomeRun, and used IPTables commands to restrict access.
I've managed to fix all of my port based VLAN issues. I will be looking at 802.11q tagging as the Cisco small business switches (ESR500 series) have a discovery procedure that VLAN tags any handsets to VLAN 100 by default. Its the Cisco way of doing things.