Vlan config and bridging
Posted: Sun Jul 28, 2019 2:02 pm
Hi there so I'm a little confused. I've read all the guides and forum. Posts so I may have gone wrong but this is what I need.
20 VLans trunked down port 1 hexs routerboard
Routing between trusted VLans only.
DHCP +gateway with dhcp pool on each VLan
Port 2+3 Managment untagged ports on Vlan 1
Ports 4+5 Wan ports.
So it seems I've correctly setup the wans and NATS as they seem to be behaving. My issue is vlan and bridge
My config
Bridge with vlan filtering. PVID 1
Bridge ports 1/2/3
Bridge vlan trunked 1-20 on ports 1
Bridge vlan untagged 1 on ports 2/3 & bridge
Trusted and un-trusted vlan interface lists
Vlan interfaces created on ethernet 1
Dhcp servers on each vlan interface with pool.
Ip address on each vlan interface
I have a firewall rule blocking vlan routing using interface lists. Untrusted-vlan and trusted-vlan.
So all good in the main network however. Webfig is not accesable on the Managment vlan PVID 1. Also ports 2 and 3 can't talk to devices on Managment vlan except the router. But you can talk to devices on other VLans.........
Where have I gone wrong.
M
20 VLans trunked down port 1 hexs routerboard
Routing between trusted VLans only.
DHCP +gateway with dhcp pool on each VLan
Port 2+3 Managment untagged ports on Vlan 1
Ports 4+5 Wan ports.
So it seems I've correctly setup the wans and NATS as they seem to be behaving. My issue is vlan and bridge
My config
Bridge with vlan filtering. PVID 1
Bridge ports 1/2/3
Bridge vlan trunked 1-20 on ports 1
Bridge vlan untagged 1 on ports 2/3 & bridge
Trusted and un-trusted vlan interface lists
Vlan interfaces created on ethernet 1
Dhcp servers on each vlan interface with pool.
Ip address on each vlan interface
I have a firewall rule blocking vlan routing using interface lists. Untrusted-vlan and trusted-vlan.
So all good in the main network however. Webfig is not accesable on the Managment vlan PVID 1. Also ports 2 and 3 can't talk to devices on Managment vlan except the router. But you can talk to devices on other VLans.........
Where have I gone wrong.
M