OC200 Management VLAN and OPNSense Router
I got a question as a newbie to netzworking and VLAN.
I use an OPNSense box as my router. My main switch is a SG2210XMP-M2, my secondary switch is a SG2008.
I defindes several VLANs (10, 20, 30, 40, 50) with corresponding IP ranges (192.168.10.0/24, 192.168.20.0/24,...)
I want to use VLAN10 as my management VLAN.
On my SG2210XMP-M2, I configured Port1 as the Trunk (Profile "ALL"), Port2 is configured with VLAN10 and here the OC200 is connected.
Inside the OC200, I was able to adopt the SG2210XMP-M2 and confiure everything. I set VLAN10 as the management VLAN and disabled default/VLAN1
Now I plugged my second switch into Port 4. Port4 is configured as Trunk (Profile "All"). As well as Port1 on the SG2008, thats configured as the Trunk (Profile "All"). I enabled VLAN10/20/30/40 there and disable VLAN1.
All devices got a static IP inside the same subnet:
192.168.10.30 OC200
192.168.10.40 SG2210XMP-M2
192.168.10.41 SG2008
After changing the VLAN setting on the SG2008, I loose connection inside the OC200 and the SG2008 stays in disconnected..
Since I put every switch into VLAN10 as the management VLAN, I was unable to see a similiar option for the OC200.
So the question is:
Do I need to set VLAN10 on OC200 as the management VLAN? If yes, how?
If not, where else is the error? Did I miss something?
Yes, you need to configure it on the OC200.
For the detailed steps, please refer to the guide below:
How to configure Management VLAN in Omada SDN Controller (4.4.4 or above)
For your scenario, it's Topology 2: Network with a Non-Omada Managed Router as the Gateway
Yes, you need to configure it on the OC200.
For the detailed steps, please refer to the guide below:
How to configure Management VLAN in Omada SDN Controller (4.4.4 or above)
For your scenario, it's Topology 2: Network with a Non-Omada Managed Router as the Gateway
@Vincent-TP
Thanks, but I already know this article and it does NOT answer my questions.
So to be clear:
Step 1 - create a VLAN and call it MGMT, give it a VLAN ID
* Already did that, my ID is 10
Step 2 - Make sure the devices have obtained IP addresses dynamically or have proper static IP addresses. If the devices use static IP addresses, note that the controller and devices should be in the same subnet.
* Already gave my devices (OC200 and 2 x Switches a static IP in the same subnet - 192.168.10.30/40/41)
Step 3 - Go to Devices, click switch A to open the sidebar, and go to Ports. Click the edit icon of an idle port (port 4 in this example) and select a profile whose PVID is 4090
Port1 = Uplink to OPNSense
Port2 = OC200, VLAN10 is assigned
Port3 = planned for my AccessPoint with multiple SSIDs (and VLANs), therefore the profile "Trunk" was assigned
Port4 = for my second switch, the uplink port, therefore defined as "All"
Step 5 - On the same page, go to Devices and add the devices to MGMT VLAN (VLAN 4090).
This step is confusing, since there is no way to edit the VLANs in Batch.
I can manualy set the management VLAN on my primary switch, though:
So, finally, the questions still is:
Do I need to set VLAN10 on OC200 as the management VLAN? If yes, how?
If not, where else is the error? Did I miss something?
I can set the management VLAN on the switches, but not inside OC200
Hi @Wolfman75
Do I need to set VLAN10 on OC200 as the management VLAN? If yes, how?
>>>You already done this via step2&3.
After changing the VLAN setting on the SG2008, I loose connection inside the OC200 and the SG2008 stays in disconnected..
>>>What do you mean lose connection inside OC200? Will you lose the connection to the management of the OC200?
Or the OC200's interface is still accessible, the only thing is the SG2008 will turn to disconnected?
Please share a screenshot of the Device page.
If you don't mind, please test this:
Change the profile of the SG2008 uplink port from Trunk to the default profile ALL, and see if it helps. Thanks.
Hello Vincent!
This is my Device page (I added a ping to my SG2008 too):
ChatGPT recommended to create a new profile for the uplink from the SG2008 to the SG2210XMP (and the port where it is connected on the SG2210XMP)
It seemed to work well, I could adopt the SG2008 and the EAP, but after some time (overnight, next day,..) both turned into disconnected again :-(
Will try to set Port1 on my SG2008 (the uplink) to "All" and seew what happens
I let it run a couple of day, but unfortunately, no:
I even did reset the SG2008
To be sure, this is my layout:
The SG2210XMP-M2:
Could it be, that the "ALL" Profile does not upgrade to a new management VLAN?
I set my devices (so far I could) to VLAN10 as the management ID, but the "ALL" profile keeps Deault (ID 1) as the native and untagged network