OK Cube4d, welcome to the forum. A couple of comments.
Assuming that port 2 is being used as a VLAN trunk (as opposed to a Hybrid mode). All of your devices EXCEPT the router connection on port 2 are NOT VLAN aware (or at least not operating as a VLAN connection).
- DO NOT use VLAN 1. Any other number is fine, but do not use VLAN 1. I can explain further if desired.
- In your first post screen capture of the VLANs tab, uncheck “Port Isolation”. It will screw you up if you don’t understand what it’s doing. On the “Port Isolation” tab, leave as default with all boxes checked except itself. You are using VLANs to separate traffic. Using Port Isolation just adds an un-needed layer of complexity that can easily come back to haunt you.
- On the VLANs tab, change the VLAN ID on the first line from 1 to whatever number you change it to (see item #1)
- On the VLAN tab on all ports EXCEPT port 2 (which DOES need to be VLAN aware), change VLAN Mode to “Disabled” (you can also use “Strict”), and change the VLAN Receive to “Only Untagged”, and change the Default VLAN ID to whatever number you use instead of VLAN 1 (see item #1).
- On the VLAN tab port 2 ONLY, change VLAN Mode to “Strict”, VLAN Receive to “Only Tagged”, and Default VLAN ID to some unused dummy number (I use 970 + port number, so port 2 would be 972)
- On your router (apparently a Fritzbox which I know nothing about configuring), the connection to the switch needs to be set up as a VLAN trunk with VLANs 200 and whatever you used instead of VLAN 1). The router will be responsible for DHCP assignments and routing to the internet, and presumably isolating the two VLANs from each other.
BTW, there is a SwitchOS section of the forum that this really should have been posted in, but this will do…