Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!
Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!
Act now. This offer ends July 14, 2017.
Solved
SG300 VLAN Configuration
Posted on 2016-10-18
I have a home network and I'm planning to install IP cameras and a Synology Surveillance station. I created a VLAN to isolate the traffic from the IP cameras from the rest of my network. The SG-300 is configured for L3. Here’s my setup:
The Static routing table in the SG-300 shows:
0.0.0.0 0 Default 192.168.1.1 Default 2 1 VLAN1
192.168.1.0 24 Local Directly Connected VLAN1
192.168.2.0 24 Local Directly Connected VLAN2
On the SG300, port 10 is configured for VLAN1, untagged, trunk. Port 1 and 2 are configured for VLAN2, untagged, access.
The traffic on VLAN2 appears to be isolated from VLAN1 and I can SSH into the Synology Surveillance box. I can ping the Synology box from the 192.168.1.0/24 subnet, however, if I SSH into the Synology box, I can’t ping out to the internet.
Any help would be appreciated.
Thanks,
Alan
The Static routing table in the SG-300 shows:
0.0.0.0 0 Default 192.168.1.1 Default 2 1 VLAN1
192.168.1.0 24 Local Directly Connected VLAN1
192.168.2.0 24 Local Directly Connected VLAN2
On the SG300, port 10 is configured for VLAN1, untagged, trunk. Port 1 and 2 are configured for VLAN2, untagged, access.
The traffic on VLAN2 appears to be isolated from VLAN1 and I can SSH into the Synology Surveillance box. I can ping the Synology box from the 192.168.1.0/24 subnet, however, if I SSH into the Synology box, I can’t ping out to the internet.
Any help would be appreciated.
Thanks,
Alan
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
5
-
3
-
2
10 Comments
Nitenkumar, how could I check to know if it's NATing for the 192.168.2.0 network? I can run linux commands from the Synology box on 192.168.2.4.
Are the home Netgear routers capable or NATing to two networks? Is this possible with the standard firmware? Do I need to upgrade to DD-WRT or even another type of WiFi router?
Thanks for your help.
Alan
Are the home Netgear routers capable or NATing to two networks? Is this possible with the standard firmware? Do I need to upgrade to DD-WRT or even another type of WiFi router?
Thanks for your help.
Alan
Shouldn't it be possible for the SG300 to correctly route from VLAN2 to the internet with ACL rules?
Thanks,
Alan
Thanks,
Alan
The router has remote management access, but all you'll get is the same GUI screens that I have access to.
Active today
You should even be able to use the web interface of DD-WRT. Basically, you want to have 2 VLANs, each tied to whichever ports you'd like them set up to. That will allow you to have 2 physical connections to the switch, where you can configure the appropriate VLANs. The port that goes to the living room will obviously be configured to VLAN2, along with whichever ports will be going to the cameras.
Featured Post
Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!
Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!
Act now. This offer ends July 14, 2017.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
When you try to share a printer , you may receive one of the following error messages.
Error message when you use the Add Printer Wizard to share a printer:
Windows could not share your printer. Operation could not be completed (Error 0x000006…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses
Course of the Month8 days, 18 hours left to enroll
734 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.