TP-Link ER605 Basic routing help
Sorry for the basic question but I am struggling to Connect 2 networks and being able to ping between them and devices on each network.
I have a broadband network 192.168.1.x and an internal process control network using 192.168.120.x & I need machines on switches connected to each side to be able to communicate.
I am only using the Lan port and one Wan port, does it matter which network is connected to which port?
What needs to be configured to communicate 2 ways with both networks as currently I can only ping in one direction.
What do I need to configure to allow ping to work, it sort of looks like ICMP is enabled by default?
I want to allow all devices on each network to be able to communicate with each other.
Sorry for the Newbie questions but I have been fighting with this for a full day now.
Here is the current routing setup.
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
It will not work. In general, you will not be able to reach the LAN side from the WAN side because of NATing. This router is meant to connect a local network to Internet. However you can still use it to route local traffic using VLANs on its LAN side, but that would be a rather strange solution if that's the only purpose of it.
- Copy Link
- Report Inappropriate Content
@KJK Thanks I sort of expected it wouldn't work as I described. But if I can route different networks via its LAN ports that would be exactly what I need.
Do you know what would need to be configured to get the 2different networks on 2 LAN ports communicating both ways as well as enabling Ping responses ?
- Copy Link
- Report Inappropriate Content
I can only tell you how it could be configured on ER7206 since I do not own ER605. I believe the firmware on both routers is very similar.
You should have ‘vlan1’ already on your router. I think it would be best to leave it alone and create 2 new VLANs. Here’s an example.
First, create 2 new networks.
Name: LAN120
IP Address: 192.168.120.1
Subnet Mask: 255.255.255.0
Vlan: 120
DHCP Server: Enabled
Starting IP Address: 192.168.120.100
Ending IP Address: 192.168.120.199
Name: LAN130
IP Address: 192.168.130.1
Subnet Mask: 255.255.255.0
Vlan: 130
DHCP Server: Enabled
Starting IP Address: 192.168.130.100
Ending IP Address: 192.168.130.199
The above should create automatically 2 new VLANs, ‘vlan120’ and ‘vlan130’. Edit ‘vlan120’ so it includes only Port 2 as UNTAG. Similarly, edit ‘vlan130’ so it includes only Port 3 as UNTAG. You can also remove these 2 ports from ‘vlan1’. Then change PVIDs for these 2 ports to PVID 120 for Port 2 and PVID 130 for Port 3.
That’s all. You can connect end point devices to these 2 ports or unmanaged switches. The router should route traffic between all VLANs without any further changes.
- Copy Link
- Report Inappropriate Content
@KJK Many thanks I'll give that a go.
- Copy Link
- Report Inappropriate Content
@Craig_C Thanks for the info so far unfortunately I still cannot ping between networks.
Here is my routing table as as;
I'm also unsure about the IP addresses for each network as we are using static entries on each side so no DHCP required. I have set the ip address of each LAN port on the router to the address of the default gateway for each network, so in my case 192.168.1.1 & 192.168.150.50 should I have done this? As it stands I can ping from a device on each network to the other LAN port on the opposite network but I am unable to ping a pc or anything connected to each network from the other?
- Copy Link
- Report Inappropriate Content
This routing table tells little about your configuration. And, it tells nothing about your VLAN configuration.
"I'm also unsure about the IP addresses for each network as we are using static entries on each side so no DHCP required."
You have 2 subnets, 192.168.1.0/24 and 192.168.120.0/24. You can use any IP address from these subnets except those ending with .0 and .255.
"I have set the ip address of each LAN port on the router to the address of the default gateway for each network, so in my case 192.168.1.1 & 192.168.150.50 should I have done this?"
I don't know what you mean. This is not this kind of router where you can assign an IP address to a LAN port. Did you wanted to say that you set default gateways on your endpoint devices to the router LAN addresses in corresponding subnets? That would be correct. Where does "192.168.150.50" come from?
"As it stands I can ping from a device on each network to the other LAN port on the opposite network but I am unable to ping a pc or anything connected to each network from the other? "
What devices do you try to ping? Are they Windows machines? If yes, have you modified the Windows firewall rules so it allows pings from remote networks? Windows also uses the concept of 'Private' and 'Public' networks.
- Copy Link
- Report Inappropriate Content
@Craig_C NOW RESOLVED - sorry for the late response but I can now confirm the device is routing as described. The issues were as follows;
Incorrect Gateway address on one side.
Windows Firewall not dissembled for all networks, still blocking the ping on one machine.
Static route added to Windows server to allow it to ping the opposite network.
For testing I was using Windows Laptops on both sides and set to DHCP everything worked. The mistakes came in once I tried to match it to the existing static addressing on the existing networks.
Thanks for every ones help.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 2921
Replies: 7
Voters 0
No one has voted for it yet.