Trying to set up what I thought was simple: a Cisco RV110W wireless router and a Ubiquiti Unifi access point with 2 SSIDs:
1 (with password) to access wired desktops and server along wiht internet
1 without a password that would only be able to access the internet.
We were able to configure the wireless router to achieve this when you connect to the wireless in the router. But the router isn't where they want to offer the wifi. We have not been able to resolve this issue with the unifi (although I have 99.9999% confidence it is not a wireless access point issue. We tried with engenius with the same failed results.
We got a Netgear GS105E switch, connected it to the Unifi and seems to accomplish what we want, at least in our lab.
The difference in the Netgear vs. Cisco VLAN settings appears to be that the netgear will tag the untagged packets (coming from the wired desktops) for the private VLAN. The cisco appears to allow untagged packets onto 1 vlan, but that isn't working, at least for us.
We can use the switch connected to the router, but I would like to have just 1 device, a router, that allows VLAN configuration. Would anyone have a recommendation?
What we set up when testing the netgear or when it was just the Cisco:
Port 1 connects to the wired desktops with a 16 port unmanaged switch and these packets are untagged
Port 2 connects to the Unifi access point set up:
SSID closed has a WPA password and is on vlan 10
SSID open has no password and is on vlan 20
For the cisco, the wan port connects to the internet
For the netgear switch, port 3 connects to the cisco, with all vlan settings turned off on the cisco. The netgear is set as follows:
VLAN 10 is ports 1, 2, 3
VLAN 20 is ports 2, 3
PVID is turned on for port 1 and tags those untagged packets with VLAN 10
It seems that last step of allowing untagged and vlan 10 packets on different ports to talk back and forth is where the cisco breaks. Would anyone know what I need to do or what hardware to replace this with?