Posted: Tue Mar 17, 2009 16:02 Post subject: VLAN Seperation not working
Hello, I am trying to create a seperate WVLAN on a different SSID which will have internet access but no access to the rest of the LAN. I am using a WRT54GS v1.1 (CGN20) with the latest eko firmware.
My normal network is on the 192.168.1.0 subnet which has access to the internet via an adsl router on 192.1685.1.254
The WRT54GS WAN is to be plugged into a switch on the network and assigned an IP of 192.168.1.253 and the normal LAN/WIFI side of the WRT54GS will be in the 192.168.0.0 subnet, while I want the VLAN/WVLAN to be in the 192.168.2.0 subnet.
I have created a new bridge (br1) with an interface address 192.168.2.253, created a VLAN (vlan2) from port 4 on the WRT54GS and created a second SSID (wl0.1).
I have then added vlan2 and wl0.1 to br1 along with a couple of iptables rules to allow internet access, but it seems it also has access to the rest of the network.
I was using the instructons from the following tutorial, but using the newer features of the latest builds of firmware to assign and create the bridge, vlan and ssid:
Just curious... Are you on DSL? I have never been able to separate VLANs successfully. I am of the opinion that there is a bug of some sort with DD-WRT and DSL/PPPoE with respect to separating vlans (wireless or wired makes no diff)
I tried many diff configs and a few diff hardware with no success.
I am using a seperate speedtouch adsl router, which takes care of my Internet via PPPoA not E. but I only really use the wrt54gs in an AP sort of way.
Ive managed to keep my WVLAN seperate from the rest of the network and from accessing the ddwrt config pages, while having the wrt54gs connected to my LAN via one of its LAN ports, which means I can have my normal wifi and lan devices on the rest of my network and the WVLAN still stays seperate.
Hattori, why are you trying to seperate wireless from the LAN? Wouldn't it be easier to have wireless and lan the same, but a seperate WVLAN for the "independant access"
look, im using 2 WRT54G2 Routers the 1st feeds internet to my officve Lan the 2nd is for a "Hotspot" but i need that 1 pc connects to it and have access to my offcie lan, so i need 2nd Wlan don't access my office Lan. rigth now it works fine as separate LANs but no Internet on the "hotspot"