VLAN Guides

TheGlenn88 · June 17, 2018, 7:07pm

Hi Guys,

Does anyone know of any guides or learning material preferably online that can teach about the fundamentals of Port based and 802.1q based VLAN’ing. That is orientated around rOS/swOS ?
I need to optimise my work network that is currently operating on dumb switches which must be causing issues. We have a few groups as below, ordered by priority.

INTERNET
STORAGE SERVERS x 2
VOIP
WORKSTATIONS
PUBLIC/STAFF DEVICES

I need to be able to understand how to optimise the flow of traffic, divide them so certain groups cannot talk to each other but can talk to certain machines/servers.

Currently I have a basic setup where the public/staff devices can access the internet, but cannot access other devices on the network. This is achieved by having them in a single VLAN operating on their own DHCP scope.

I’m thinking perhaps it may be possible to give workstations a VLAN so they cannot access each other but can access the storage server and the internet. Some admin workstations should be able to access all of the workstations, the storage server and the internet. The VOIP phones should only be able to reach the internet.

I hope this makes sense.

There will also be the need to implement site to site VPN as well as client/server VPN’s in the future so will need to see how that implements into VLAN’ing.

Thanks
Mike

CZFan · June 17, 2018, 10:58pm

This sounds more like getting a consultant in to setup, I am willing to offer my services, if you want. Get my contact details from my website under my profile

millenium7 · June 17, 2018, 11:49pm

I agree this is more a consulting job. Besides most of what you are looking at involves routing moreso than VLANs

My suggestion if you want to learn this stuff yourself is to go through Jeremy Cioara’s CCNA series. He’s probably the best person to learn from not because of the tech detail but because he’s so easy to listen to thus the learning becomes easy

Problem is MikroTiks VLAN implementation is so ass backwards, sideways and flipped on its roof simultaneously. It’s seriously the most convoluted implementation of VLANs I’ve seen BUT I feel a solid ‘industry standard’ foundation of knowledge then adapting to MikroTik quirks is a better way to go. Rather than learning MikroTik straight up (cause then everything else is harder to understand)

TheGlenn88 · June 18, 2018, 7:04pm

Thanks guys,

CZ I have sent an email to the email address provided on your website.

Thanks
Mike