| thinking about buying this- VLAN Support i want to setup a few VLANS on my home network and i dont have the proper setup right now.
i was thinking about buying this, or something very similar, for my main router/gateway
ZyXEL ZyWALL USG100
»www.newegg.com/Product/Product.a···33181087
and this for a switch on my network
HP J9449A#ABA ProCurve Switch
»www.newegg.com/Product/Product.a···33316155
before i buy the zyxel, i figured i would post in here and see if anyone could give me some feedback.
example...i am familiar with the sonicwall brand and alot of the features their devices say they can do require the enhanced OS/firmware to be installed before it works.
i just want to make sure that i dont purchase this zyxel only to find out that for vlan support it requires some type of upgrade/license (hidden cost).
TIA. |
|
|
|
 AnavSarcastic Llama? Naw, Just AcerbicPremium
join:2001-07-16
Dartmouth, NS
kudos:3 | No extra costs. It will recognize tagged vlan packets assigned by the switch and handle them according to the rules you have entered. |
|
| thank you |
|
Reviews:
 ·Fairpoint Commun..
 ·Verizon FiOS
| You also have to set up VLAN DHCP in the router to give VLAN IP addresses to the appliances on the VLANs. And the router will want to know that the IP address of the switch is the next hop to each VLAN. Then you can write firewall rules allowing or disallowing various connections to and among VLANs. The potential for tailoring is quite large, so I guess so is the potential for mistakes.
I'm using a Cisco SG200-26 switch with a USG-50, and so far have one added VLAN functioning.
kirby |
|
AnavSarcastic Llama? Naw, Just AcerbicPremium
join:2001-07-16
Dartmouth, NS
kudos:3 | reply to tomdlgns
Some usg100 pics may help. |
|
| nice. thank you for posting those. |
|
| reply to tomdlgns
i have looked at the pics posted (thank again) and i downloaded the user manual to look at vlan information in greater depth.
i printed out pages 344-348 and read them, but since i am not an expert on vlans, can someone just verify that i am able to setup the below scenario:
1 network with 192.168.1.1 /24 and a wireless network with 192.168.100.1/24
i have an hp 8 port vlan switch, as well.
my goal is to have the wireless network separate from the wired network, but still hit the internet. both networks, wired and wifi, will share the same gateway, obviously. |
|
Reviews:
·Fairpoint Commun..
·Verizon FiOS
| You should be able to establish the 192.168.100.0/24 VLAN in the USG and perform DHCP to the units within this VLAN. You need to name this VLAN, such as VLAN100 or VLAN2 or whatever. The switch has to know about VLAN100 by establishing the same name in the switch as the name of a VLAN. (The default VLAN for everything else may be VLAN1 or some other number.)
If this is the only VLAN aware switch, the you need to assign VLAN100 to one or more of the switch's ports. These become access ports. They take in untagged messages, and tag them with VLAN100. They send out VLAN100 tagged messages after untagging them. The switch port that connects to the USG LAN interface that you are using, e.g., LAN1, has to be set as a Trunk type port on the switch because it will be passing both tagged and untagged traffic.
Alternatively, you can build two VLANs in the same manner. However, you need to give the second VLAN access to VLAN1 in order to administer the switch.
kirby |
|
