My phone receives DHCP through the tagged VLANs but my laptop does not and actually has trouble even connecting.

Do phone and laptop connect to same SSID of EAP245v1,and the phone can get the IP address, while the laptop can not? Do only some special devices have this problem?

I have finally concluded that there is an issue with the tagged traffic and EAP245 because when I set an untagged port into the three VLANs (one per port) and a wired connection, there is zero trouble communicating with the gateway, DNS, internet, and (for now until implementing firewall rules), other VLANs.  Along with this, I deleted all SSIDs and created one that is untagged on one VLAN (with Switchport untagged and PVID to match) and it works that way as well. Finally, tagged VLANs have no trouble passing to a second managed switch. 

If we enable VLAN setting in EAP, then the output packets from the LAN port of EAP will be tagged corresponding VLAN tag. (The DHCP discover packets from wireless clients will be tagged with corresponding VLAN tag) If the DHCP Server deliver the IP address according to the different VLAN Tag, then wireless clients which connected with VLAN SSID will only get the IP address of this VLAN. What's the model of your Router? if it does not support multi-VLAN interface, then it may cause this problem.

jonas wrote

My phone receives DHCP through the tagged VLANs but my laptop does not and actually has trouble even connecting.

 

Do phone and laptop connect to same SSID of EAP245v1,and the phone can get the IP address, while the laptop can not? Do only some special devices have this problem?

 

Yes!  There are (or rather were) three SSIDs on separate VLANs all showing the same issue.  I have only tested with my phone and laptop so far but they do not show similar problems with other networks.

 

 

  

If we enable VLAN setting in EAP, then the output packets from the LAN port of EAP will be tagged corresponding VLAN tag. (The DHCP discover packets from wireless clients will be tagged with corresponding VLAN tag) If the DHCP Server deliver the IP address according to the different VLAN Tag, then wireless clients which connected with VLAN SSID will only get the IP address of this VLAN. What's the model of your Router? if it does not support multi-VLAN interface, then it may cause this problem.

 

It is a Mikrotik RB3011, Routerboard v6.43.  It looks to be configured for VLAN interfaces and they function from both switches with my laptop and a test desktop through Ethernet on both switches, able to pick up the correct DHCP and communicate with local (laptop to desktop, desktop to laptop) and internet addresses.  

 

 

Thank you for your reply!

Hold the phone!  Deleting and recreating the SSIDs tagged exactly how I had it now has all SSIDs working!  I can't believe it!  The breakthrough I was hoping for :)

TheUpsideDown wrote

Hold the phone!  Deleting and recreating the SSIDs tagged exactly how I had it now has all SSIDs working!  I can't believe it!  The breakthrough I was hoping for :)

Hi,

Nice to hear that you have solved the problem, it may because there had some configuration errors of EAP before. You have refreshed the configuration of EAP as as you re-create the SSID.