Community discussions

MUM Europe 2020
 
jprasad
just joined
Topic Author
Posts: 19
Joined: Sun Apr 27, 2014 10:12 pm

VLANS & CCR-1016 [Solved]

Sun Feb 22, 2015 4:59 am

hi there,

i am a newbie but trying hard and i think i made a mistake in getting a CCR and not a CRS. hopefully someone can tell me if i need to get a CRS or if i can make this work.

basically i want to set
eth01 to trunk vlan 10,20,30 (switch on another floor)
eth02 to trunk vlan 10,30 (cAP2n access point)
eth03-6 vlan 10
eth07-10 vlan 30
eth11-12 WAN ports

then on my AP have two vAP and dhcp relay back to the ccr.
vssid1 - vlan10 lan
vssid2 - vlan30 guest

i have put all my vlans on eth01 and then made a bridge and added eth01,02
and then made a bridge and added eth03-06 and vlan10 etc

now what should i attach my address to the vlan, bridge or a interface port?

just some pointers please - i am really trying to learn and have gotten a little stuck now.

thanks

Jonni
 
jprasad
just joined
Topic Author
Posts: 19
Joined: Sun Apr 27, 2014 10:12 pm

Re: VLANS & CCR-1016

Sun Feb 22, 2015 9:52 am

Image

here is a bad drawing of what i am trying to achieve.
 
jprasad
just joined
Topic Author
Posts: 19
Joined: Sun Apr 27, 2014 10:12 pm

Re: VLANS & CCR-1016

Mon Feb 23, 2015 4:46 am

Hi

I have tried to setup the trunk to ap but from the AP i can only ping my lan bridge address when in theory i should be able to ping my guest bridge address as well.
can someone please help me

CCR config
 #     NAME                                TYPE       ACTUAL-MTU L2MTU
 0  R  01-officetrunk                      ether            1500  1590
 1  RS 02-officeHub                        ether            1500  1590
 2  R  03-AP                               ether            1500  1590
 3   S 04-guest                            ether            1500  1590
 4  RS 05-NAS1                             ether            1500  1590
 5   S 06-NAS2                             ether            1500  1590
 6   S 07-voip1                            ether            1500  1590
 7     08                                  ether            1500  1590
 8     09                                  ether            1500  1590
 9     10                                  ether            1500  1590
10  X  11-wan-voip                         ether            1500  1590
11  X  12-wan-lan                          ether            1500  1590
12  RS NAS                                 bond             1500
13  R  bridge-guest                        bridge           1500  1586
14  R  bridge-lan                          bridge           1500  1586
15  R  bridge-management                   bridge           1500  1586
16  R  bridge-trunk                        bridge           1500 65535
17  R  bridge-voip                         bridge           1500  1586
18  RS vlan10-e01                          vlan             1500  1586
19  RS vlan10-e03                          vlan             1500  1586
20  RS vlan20-e01                          vlan             1500  1586
 
 #    NAME                    MTU ARP        VLAN-ID INTERFACE
 0 R  vlan10-e01             1500 enabled         10 01-officetrunk
 1 R  vlan10-e03             1500 enabled         10 03-AP
 2 R  vlan20-e01             1500 enabled         20 01-officetrunk
 3 R  vlan30-e01             1500 enabled         30 01-officetrunk
 4 R  vlan30-e03             1500 enabled         30 03-AP
 5 R  vlan40-e01             1500 enabled         40 01-officetrunk
 6 R  vlan40-e03             1500 enabled         40 03-AP
 0  R name="bridge-guest" mtu=auto actual-mtu=1500 l2mtu=1586 arp=enabled
      mac-address=4C:5E:0C:4A:EF:99 protocol-mode=rstp priority=0x8000
      auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s
      forward-delay=15s transmit-hold-count=6 ageing-time=5m

 1  R name="bridge-lan" mtu=auto actual-mtu=1500 l2mtu=1586 arp=enabled
      mac-address=4C:5E:0C:4A:EF:96 protocol-mode=rstp priority=0x8000
      auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s
      forward-delay=15s transmit-hold-count=6 ageing-time=5m

 2  R name="bridge-management" mtu=auto actual-mtu=1500 l2mtu=1586 arp=enabled
      mac-address=4C:5E:0C:4A:EF:96 protocol-mode=rstp priority=0x8000
      auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s
      forward-delay=15s transmit-hold-count=6 ageing-time=5m

 3  R name="bridge-trunk" mtu=auto actual-mtu=1500 l2mtu=65535 arp=enabled
      mac-address=4C:5E:0C:4A:EF:98 protocol-mode=rstp priority=0x8000
      auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s
      forward-delay=15s transmit-hold-count=6 ageing-time=5m

 4  R name="bridge-voip" mtu=auto actual-mtu=1500 l2mtu=1586 arp=enabled
      mac-address=4C:5E:0C:4A:EF:96 protocol-mode=rstp priority=0x8000
	
 
 #   ADDRESS            NETWORK         INTERFACE
 0 I 192.168.88.251/24  192.168.88.0    11-wan-voip
 1 I 192.168.88.250/24  192.168.88.0    12-wan-lan
 2   192.168.90.1/24    192.168.90.0    bridge-voip
 3   192.168.91.1/24    192.168.91.0    bridge-guest
 4   192.168.92.1/24    192.168.92.0    bridge-management
 5   192.168.89.1/24    192.168.89.0    bridge-lan
Last edited by jprasad on Mon Feb 23, 2015 4:52 am, edited 1 time in total.
 
jprasad
just joined
Topic Author
Posts: 19
Joined: Sun Apr 27, 2014 10:12 pm

Re: VLANS & CCR-1016

Mon Feb 23, 2015 4:49 am

AP Config
 #     NAME                                TYPE       ACTUAL-MTU L2MTU
 0  R  ether1                              ether            1500  1598
 1   S wlan-guest                          wlan             1500  1600
 2   S wlan-lan                            wlan             1500  1600
 3     wlan1                               wlan             1500  1600
 4  R  bridge-ap                           bridge           1500 65535
 5  R  bridge-guest                        bridge           1500  1594
 6  R  bridge-lan                          bridge           1500  1594
 7  R  bridge-management                   bridge           1500  1594
 8  RS vlan10-e01                          vlan             1594  1594
 9  RS vlan20-e01                          vlan             1592  1594
10  RS vlan40-e01                          vlan             1500  1594
 0 R  vlan10-e01             1594 enabled         10 ether1
 1 R  vlan20-e01             1592 enabled         20 ether1
 2 R  vlan40-e01             1500 enabled          1 ether1
Flags: X - disabled, R - running
 0  R name="bridge-ap" mtu=auto actual-mtu=1500 l2mtu=65535 arp=enabled
      mac-address=4C:5E:0C:87:1B:2E protocol-mode=rstp priority=0x8000
      auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s
      forward-delay=15s transmit-hold-count=6 ageing-time=5m

 1  R name="bridge-guest" mtu=auto actual-mtu=1500 l2mtu=1594 arp=enabled
      mac-address=4C:5E:0C:87:1B:2D protocol-mode=rstp priority=0x8000
      auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s
      forward-delay=15s transmit-hold-count=6 ageing-time=5m

 2  R name="bridge-lan" mtu=auto actual-mtu=1500 l2mtu=1594 arp=enabled
      mac-address=4C:5E:0C:87:1B:2D protocol-mode=rstp priority=0x8000
      auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s
      forward-delay=15s transmit-hold-count=6 ageing-time=5m

 3  R name="bridge-management" mtu=auto actual-mtu=1500 l2mtu=1594 arp=enabled
      mac-address=4C:5E:0C:87:1B:2D protocol-mode=rstp priority=0x8000
      auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s
      forward-delay=15s transmit-hold-count=6 ageing-time=5m
      
 #   ADDRESS            NETWORK         INTERFACE
 0   ;;; default configuration
     192.168.89.10/24   192.168.89.0    bridge-lan
 1   192.168.91.10/24   192.168.91.0    bridge-guest
 2   192.168.92.10/24   192.168.92.0    bridge-management
 
jprasad
just joined
Topic Author
Posts: 19
Joined: Sun Apr 27, 2014 10:12 pm

Re: VLANS & CCR-1016

Mon Feb 23, 2015 4:59 am

ah i see i put the wrong vlans in the AP - sorry been messing around so long that i made a silly mistake.
the trunk is working now.

a couple of questions:
1. with this config will all traffic on eth02 for example be tagged as vlan10?
2. should all the vlan communicate with each other by default, or is my config wrong? if they are supposed to communicate is the best way to block it using firewall rules?

thank you

Jonni

Who is online

Users browsing this forum: No registered users and 29 guests