We help IT Professionals succeed at work.
Get Started
Inter VLAN routing with a wireless twist (Cisco SG300, Engenius EAP600)
I have two Cisco SG300 switches (which I am configuring with the GUI). I also have an Engenius EAP600 WAP that has two VLANs setup (1 and 2).
I need to make it so that VLAN 1 can access VLAN 2, and the internet (router local interface on VLAN 1).
I also need to make it so that VLAN 2 can access VLAN 1, but not the internet (I can configure the router to block VLAN 2 IPs outbound)
Current setup:
Windows SBS 2008 with two DHCP scopes: 172.16.10.0/24 (VLAN 1), 10.1.1.0/24 (VLAN 2)
Cisco 1941 ISR: 172.16.10.1
Cisco SG300-52 Layer 3 Switch: 2 of them connected via LAG 1 [four gigabit ports]
Engenius EAP600: 3 of them configured with VLAN 1 and VLAN 2 (untagged, not currently isolated)
I have tried to configure this numerous ways, and have followed numerous instructions. I'm about to slam my head in the door on this one. When I connect via the SSID on VLAN 2, I get no IP address (if the profile is isolated). If I do get an IP (when the profiles are not isolated), I get a VLAN 1 IP address. I have tried connecting directly to the switch via cable (to a port that is assigned to VLAN 2), and received no IP address.
I'm obviously doing something wrong. Is there someone that would be willing to treat me like I don't know anything and help me through this?
I need to make it so that VLAN 1 can access VLAN 2, and the internet (router local interface on VLAN 1).
I also need to make it so that VLAN 2 can access VLAN 1, but not the internet (I can configure the router to block VLAN 2 IPs outbound)
Current setup:
Windows SBS 2008 with two DHCP scopes: 172.16.10.0/24 (VLAN 1), 10.1.1.0/24 (VLAN 2)
Cisco 1941 ISR: 172.16.10.1
Cisco SG300-52 Layer 3 Switch: 2 of them connected via LAG 1 [four gigabit ports]
Engenius EAP600: 3 of them configured with VLAN 1 and VLAN 2 (untagged, not currently isolated)
I have tried to configure this numerous ways, and have followed numerous instructions. I'm about to slam my head in the door on this one. When I connect via the SSID on VLAN 2, I get no IP address (if the profile is isolated). If I do get an IP (when the profiles are not isolated), I get a VLAN 1 IP address. I have tried connecting directly to the switch via cable (to a port that is assigned to VLAN 2), and received no IP address.
I'm obviously doing something wrong. Is there someone that would be willing to treat me like I don't know anything and help me through this?
Why Experts Exchange?
Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.
Jim Murphy
Programmer at Smart IT Solutions
When asked, what has been your best career decision?
Deciding to stick with EE.
Mohamed Asif
Technical Department Head
Being involved with EE helped me to grow personally and professionally.
Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question
Connect with Certified Experts to gain insight and support on specific technology challenges including:
- Troubleshooting
- Research
- Professional Opinions
Did You Know?
We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE