Posted: Sun Feb 04, 2024 15:55 Post subject: Can't configure Vlans
I've been doing a lot of attempts to configure my Trendnet DRU 811. I wonder if someone can help me get a better grasp how to do this. I have DD-WRT v3.0-r55052 mini installed.
I've tried more complicated variants but I'm trying to simplify just to try to get this to work.
I have a main TPLINK modem/router and Dlink smart switch. I would like to have this ultimately set up to handle tagged traffic (differnet Vlans)
What I would ultimately like is Vlan 30 NIOT, Vlan 20 Trusted, and Vlan 10 Segregated.
Although I've view many links, I've been trying to follow this: Trunk-Port Link between Main-Router and Wireless-Access-Point (WAP) as it seems to be very recent.
My current issue is that although I have now created a br30 and Vland 30. When I plug a device into Port 3 connected to Vlan 30, I cannot ping my main router (I have not attempted to bridge wl0.1 to keep things simple) but I can view my router when I'm plugged into Port 4
What step do I need to do let me get access to my modem.
This is my current SWitch Config
ddw-rt config.png
Description:
Filesize:
82.7 KB
Viewed:
878 Time(s)
Last edited by dredvard on Sun Feb 04, 2024 17:36; edited 1 time in total
I had tried it both ways - with no impact. The original attempt was with the appropriate tagging (ie. trunk line). It is now reconfigured as a tagged trunk line - but still the same thing. I'll update the image to show my current configuration.
Thank you for your time. I appreciate and value your insights. The reason that I posted here is that I have done > 5 resets and restarts to simplify the problem, trying to get this to work following the instructions - and tried many different iterations in between. As I have been getting frustrated I did make a mistake in what I posted for this iteration. The router/switch connection does work. I can communicate via the trunk line with the main router on vlan1.
Let me ask the question in a different way. I've disconnected it and am trying to get the dd-wrt router to work independently of the other switch as its own private network (localizing the issue to dd-wrt). Ultimately, I would like dd-wrt to act as my main router.
I cannot get devices on vlan 30 to be able to be able to pinged from devices on vlan 1 - or vice versa.
I have ran the following in the command to no avail.
These are very different configurations.
As far as I understand it, the first configuration was a WAP configuration.
A WAP is just an extension of the main router.
The VLANs and rules for the VLANs are configured on the main router!
This means that if you are connected to VLAN3 and cannot reach your main router, the fault lies on the switch or main router and not on the dd-wrt router - error in thinking!!!
If you no longer want to configure the dd-wrt router as a WAP but as the main router then see the sticky thread because both are described in the thread, even the network isolation!
And I won't answer any more questions because you don't provide any sensible information.
You only provide fragments and ask others to guess the configuration and fix your mistakes.
and a counter question: why do you need vlans if you don't want them to be isolated?
Joined: 18 Mar 2014 Posts: 12923 Location: Netherlands
Posted: Mon Feb 05, 2024 15:19 Post subject:
A VLAN in itself is just an ethernet port which tags packets.
You need to create an interface to do something with this VLAN.
All created interfaces if properly setup can communicate by default which each other.
The interface has a setting called 'net isolation' which isolates the interface from br0 and the router but not from each other that you have to do manually.
The interface is setup on the Networking page, usually you first create a bridge, set this up with an IP address etc. and then assign the VLAN to this bridge.
When working with VLANs and bridges be extremely patient, after every step Save and Apply and wait at least a minute. If you proceed too fast the bridge index can become corrupt and you can start over.
