Home Network Community > SOHO Switches > VLAN Design for Mesh WiFi
< SOHO Switches

VLAN Design for Mesh WiFi

VLAN Design for Mesh WiFi

VLAN Design for Mesh WiFi
VLAN Design for Mesh WiFi
2025-04-16 01:01:13
Model: TL-SG108  
Hardware Version: V6
Firmware Version: 1.0.0 build 20230218

The typical home installation is to connect the customer WiFi router to the ISP modem and then connect EVERYTHING ELSE in the house to the customer WiFi router. This creates one "Layer 2" network.  When the central patch panel is in a bad location for WiFi, such as the basement, it would make a "better network" if the router were located upstairs.  But, with only a single Ethernet cable from the patch panel to different rooms there is no way to carry the WAN traffic to/from the ISP and the internal LAN traffic over a single cable.

 

A pair of managed switches should solve this problem:

7ffcf4809cb640d6a22311f8c71d9784

Is this the correct 802.1Q VLAN design? i.e. VLAN 1 carries the WAN traffic to/from the ISP and VLAN 2 carries "everything else"?

The PVID for Port 1 on each switch should be set to 1.  What should the PVID be set to on Port 5 and 8?

  0      
 
  0      
 
#1
Options
2 Reply
Re:VLAN Design for Mesh WiFi
2025-05-09 21:46:12

  @UnWired 

 

Here are some examples of using the 802.1Q VLAN on TP-Link Easy Smart switches in case you haven't seen them already.

Additionally SG-105E/SG108E support a static link aggregation, which can be configured between them.

If this was helpful click on the arrow pointing upward to make it blue. If this solves your issue, click the star to make it blue and mark the post as a "Recommended Solution".
  0  
  0  
#2
Options
Re:VLAN Design for Mesh WiFi
2025-05-09 22:08:24

  @UnWired 

Thanks for taking the time to respond and provide information.

 

As it turns out, the design IS correct, but there was an additional wrinkle that came to light after posting the original question.

 

The test case is to support Netgear WiFi6 Orbi mesh systems under this specific set of conditions:

  • The Orbi router needs to be in a remote location from the wiring patch panel and ISP connection.
  • One or more Orbi satellites need to be connected to the router with a 'wired' (Ethernet) connection.
  • The Orbi system must need the Guest WiFi network enabled.

 

Guest WiFi is the key.   Netgear engineered the WiFi6 Orbi products to use VLAN 4093 for communication between the router and satellites for anything related to Guest WiFi.  Other traffic is ordinaty untagged frames.  Thus, the design has to add VLAN 4093 on any managed switch port connecting the Orbi router LAN port, Orbi satellite LAN port, and the trunk ports connecting the two switches.  (If only physical cable or unmanaged Ethernet switches connect the router and satellites, then both untagged and "tagged" frames pass directly to/from router and satellite.  It is the need to run both WAN and LAN traffic over a single Ethernet cable that causes the problem.

 

I have tested the new configuration using both Netgear and TP-Link managed switches.  It was a bit of a "oh, my" moment that the advanced 802.1Q VLAN configuration allows a port to be set up as both

  • Untagged for one VLAN, and
  • "Tagged" for VLAN 4093 (or others).

 

The "A" solution remains: install a second Ethernet cable between the patch panel location and the router location.  However, for many of us, installation of such a cable would be many times the cost of the cable itself.  A pair of managed switches can be considerably less costly. (Even less costly with TP-Link switches than with Netgear.)

  0  
  0  
#3
Options

Information

Helpful: 0

Views: 755

Replies: 2

About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.