Business Community > Switches > VLAN's on SG-3428 without vlan aware router
< Switches

VLAN's on SG-3428 without vlan aware router

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
12

VLAN's on SG-3428 without vlan aware router

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
VLAN's on SG-3428 without vlan aware router
VLAN's on SG-3428 without vlan aware router
2022-01-09 12:33:04 - last edited 2022-01-10 03:16:05
Model: TL-SG3428  
Hardware Version: V2
Firmware Version: 2.0.1 Build 20210131 Rel.44230

Hi,

 

I would like to seperate several devices on my SG-3428 TP-Link switch without a vlan aware router. So the switch is connected thru port 24 with a TP-link router that does not support vlans.

I found on the internet that it is possible to seperate several devices thru vlan's but when i make these 802.1q vlan's and add ports to it, the ports that are using another PVID then the default can not reach the Internet nor other devices on the switch.

Config:

vlan 1 = default

vlan 2 = internet

vlan 3 = lan+internet

 

ports 1,2,3,4,8,9,10 until 24 are in vlan 1 and 2

ports 5,6,7 are in vlan 1 and 3 

 

PVID for most ports are 1 but for the 2 ports in vlan 2 they are PVID 2.

 

I want to accomplish that ports 5,6,7 cannot reach devices on the other ports but can connect to Internet, if possible the other way around is not a problem that way i can monitor the devices on both ports but they cannot reach me on the other ports.

 

Is this possible?

 

The router where the switch is connected to accepts all because it cannot read vlan's.

 

  0      
 
  0      
 
#1
Options
18 Reply
Re:VLAN's on SG-3428 without vlan aware router
2022-01-10 07:55:24

Dear @surfer1 ,

surfer1 wrote

I found on the internet that it is possible to seperate several devices thru vlan's but when i make these 802.1q vlan's and add ports to it, the ports that are using another PVID then the default can not reach the Internet nor other devices on the switch.

Config:

vlan 1 = default

vlan 2 = internet

vlan 3 = lan+internet

ports 1,2,3,4,8,9,10 until 24 are in vlan 1 and 2

ports 5,6,7 are in vlan 1 and 3 

PVID for most ports are 1 but for the 2 ports in vlan 2 they are PVID 2.

 

Please note that you need to add the port where the switch is connected to the router to all VLANs.
Note that the egress rule is set to Untagged.

 

Please refer to this article: How to configure 802.1Q VLAN?

 

Best Regards!

Best Regards! >> Omada EAP Firmware Trial Available Here << >> Get the Latest Omada SDN Controller Releases Here << *Try filtering posts on each forum by Label of [Early Access]*
  0  
  0  
#2
Options
Re:VLAN's on SG-3428 without vlan aware router
2022-01-10 13:17:44

@surfer1 

What do you mean with the egress rule needs to be untagged?

 

Yes port 24 is the uplink to the router and in all 3 vln's. I have even made port 24 a trunk port permit all.

 

I do not understand why prts 5 and 7 do not get an ip from the router, they are both in vlan 1 only the PVID is different.

 

 

  0  
  0  
#3
Options
Re:VLAN's on SG-3428 without vlan aware router
2022-01-10 17:27:12
I see what you mean now but port 24 is the uplink to the router and port 24 is member of all three vlan's untagged.
  0  
  0  
#4
Options
Re:VLAN's on SG-3428 without vlan aware router
2022-01-11 05:56:59

Dear @surfer1 ,

 

To better help you, could you please tell me the network topology of your all devices?

If you can send me the screenshots of your VLAN settings contains how you set the PVID, it will be more helpful for us.

 

Please also tell me what is your application scenarios and network requirements, why do you set 3 VLAN but you said you just want to accomplish that ports 5,6,7 cannot reach devices on the other ports but can connect to Internet?

 

Thanks for your cooperation and patience. 

Best Regards! >> Omada EAP Firmware Trial Available Here << >> Get the Latest Omada SDN Controller Releases Here << *Try filtering posts on each forum by Label of [Early Access]*
  0  
  0  
#5
Options
Re:VLAN's on SG-3428 without vlan aware router
2022-01-11 18:28:29

@Hank21

 

 This is a screenshot of the vlans

File:
vlans.PNGDownload
  0  
  0  
#6
Options
Re:VLAN's on SG-3428 without vlan aware router
2022-01-11 18:29:03

@Hank21 

 

This is the interface setting

 

File:
interface.PNGDownload
  0  
  0  
#7
Options
Re:VLAN's on SG-3428 without vlan aware router
2022-01-11 18:29:26

@Hank21 

 

these are the ports

File:
ports.PNGDownload
  0  
  0  
#8
Options
Re:VLAN's on SG-3428 without vlan aware router
2022-01-11 18:30:29 - last edited 2022-01-11 18:33:31

@Hank21 

 

This is the tab routing although i changed the interface why there is now 10 in the printscreen but it is now: 192.168.1.0/24 and next hop is 192.168.1.1

 

 

 

And the router which is on port 24 has 192.168.1.2

 

File:
routing.PNGDownload
  0  
  0  
#9
Options
Re:VLAN's on SG-3428 without vlan aware router
2022-01-11 18:32:01
Youre right but to accomplish this i need to make 2 extra vlan's besides the default vlan according to a manual i have read ont he internet, thought is was on a tp-link site. Some people say it is not possible because the router can't deal with vlans but some other people have it working though...
  0  
  0  
#10
Options
Re:VLAN's on SG-3428 without vlan aware router
2022-01-11 18:34:02

@Hank21

 

This is port 24 whre the router is connected.

 

 

File:
ports24.PNGDownload
  0  
  0  
#11
Options
12

Information

Helpful: 0

Views: 2512

Replies: 18

Related Articles
Ap vlan multiple SSID's on sg-3428 switch
306 0
seperate traffic different vlan's
1552 0
Vlan omada on SG-TL1024DE
650 0
 VLAN's with no internet access
2058 0
 denying VLAN's to communicate with other vlan
849 0
 VLAN + switch + AP + router
463 0
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.