I'm trying to configure 2 wireless access points, each with 2 SSIDs. The 2 SSIDs must be connected to two separate physical networks to segregate internal trusted traffic from guest untrusted traffic. Thus the need for VLANs on the access points. The access points will be connected to a Netgear GS108 switch which will then be connected by 2 separate ports to the two separate physical networks. Initially connecting it to the two separate networks, I could connect to both wireless networks, but they were not communicating with either the trusted or untrusted switches (i.e, no browsing and DHCP not working).
Here's the layout:
SSID1 - VLAN2]
SSID2 - VLAN3]
Port 1 - AP
Port 7 - designated on the Netgear switch as belonging to VLAN1 and VLAN3, connected to a basic switch (non-VLAN capable) on the guest network
Port 8 - designated on the Netgear switch as belonging to VLAN1 and VLAN2, connected to a 3COM 2924 switch on the trusted network
The problem appears to be with the VLANs. I have tried testing just the trusted side of the networking. If I connect the Netgear switch to a basic, untagged port on the 3COM, it doesn't communicate with the trusted network at all. If I set the port on the 3COM switch to belong to VLAN2 (tagged), it doesn't communicate at all either. The only way I've been able to get the Netgear switch to communicate with the 3COM is to remove all VLAN settings on both ends. I've tried various combinations of settings on the Netgear end also, but the only thing that seems to allow these two switches to communicate is to belong to the basic untagged network. The Netgear has a rather strange way of setting up VLAN membership, and I can't quite figure out if the ports are set to tagged or untagged on the Netgear end. It has Port Based VLAN settings and 802.1q VLAN settings.
I just don't understand why it doesn't work, and need some help!!