Hello,
I am attempting to setup a 2 VLAN configuration for a public wireless network and an internal wireless/wired network. I have a Procurve 2650 Switch and a Procurve 7102dl router with two Procurve 420 Access Points. The router is setup for eth0/1 to connect to the DSL modem and eth0/2.1 for 192.168.1.1 255.255.255.0 and eth0/2.2 for 10.100.100.1 255.255.255.128. Tagging is enabled for VLAN 1 is equal to VID of 1 (Default_VLAN) and VLAN 2 has a VID of 2 (WLAN_PUBLIC). The switch is setup with an IP of 192.168.1.3 and Port 50 (uplink) is tagged for VLAN 1 and 2. Port 48 is tagged for the VLAN 2 access point and Port 47 is tagged for VLAN 1 access point. Now DHCP is working correctly on the router depending on what network a client connects to it serves the correct address. I can still pin between the VLAN's and I do not want them to be able to see each other as to isolate the public wireless from our internal network.
To recap:
Router - 7102dl
eth0/1 = Public IP Address
eth0/2.1 = 192.168.1.1
eth0/2.2 = 10.100.100.1
DHCP is enabled on router to serve to either network depending on which connected.
Switch - 2650
Port 50 - Tagged (VID 1 & 2)
Port 48 - Tagged (VID 2)
Port 47 - Tagged (VID 1)
Port 1-46 - Untagged (Default_VLAN) - No (WLAN_Public)
VLAN 1 has a switch IP address of 192.168.1.3
VLAN 2 has a switch IP Address of 10.100.100.3
IP Routing is enabled on both the Router and the Switch but even when I disable that on both, the two networks can still see each other.
Do I need to have IP Routing enabled or disabled?
Is my tagging scheme correct?
Do I need IP addresses assigned to the VLAN's or is that purely management oriented?
Thank you all in advance for help!!!
-Adam
I am attempting to setup a 2 VLAN configuration for a public wireless network and an internal wireless/wired network. I have a Procurve 2650 Switch and a Procurve 7102dl router with two Procurve 420 Access Points. The router is setup for eth0/1 to connect to the DSL modem and eth0/2.1 for 192.168.1.1 255.255.255.0 and eth0/2.2 for 10.100.100.1 255.255.255.128. Tagging is enabled for VLAN 1 is equal to VID of 1 (Default_VLAN) and VLAN 2 has a VID of 2 (WLAN_PUBLIC). The switch is setup with an IP of 192.168.1.3 and Port 50 (uplink) is tagged for VLAN 1 and 2. Port 48 is tagged for the VLAN 2 access point and Port 47 is tagged for VLAN 1 access point. Now DHCP is working correctly on the router depending on what network a client connects to it serves the correct address. I can still pin between the VLAN's and I do not want them to be able to see each other as to isolate the public wireless from our internal network.
To recap:
Router - 7102dl
eth0/1 = Public IP Address
eth0/2.1 = 192.168.1.1
eth0/2.2 = 10.100.100.1
DHCP is enabled on router to serve to either network depending on which connected.
Switch - 2650
Port 50 - Tagged (VID 1 & 2)
Port 48 - Tagged (VID 2)
Port 47 - Tagged (VID 1)
Port 1-46 - Untagged (Default_VLAN) - No (WLAN_Public)
VLAN 1 has a switch IP address of 192.168.1.3
VLAN 2 has a switch IP Address of 10.100.100.3
IP Routing is enabled on both the Router and the Switch but even when I disable that on both, the two networks can still see each other.
Do I need to have IP Routing enabled or disabled?
Is my tagging scheme correct?
Do I need IP addresses assigned to the VLAN's or is that purely management oriented?
Thank you all in advance for help!!!
-Adam