SG300 VLAN Configuration

I have a home network and I'm planning to install IP cameras and a Synology Surveillance station.  I created a VLAN to isolate the traffic from the IP cameras from the rest of my network. The SG-300 is configured for L3. Here’s my setup:

 Network Configuration
 The Static routing table in the SG-300 shows:

0.0.0.0            0      Default    192.168.1.1   Default                              2    1   VLAN1
192.168.1.0  24     Local                                  Directly Connected                  VLAN1
192.168.2.0 24      Local                                  Directly Connected                  VLAN2  

On the SG300, port 10 is configured for VLAN1, untagged, trunk. Port 1 and 2 are configured for VLAN2, untagged, access.

The traffic on VLAN2 appears to be isolated from VLAN1 and I can SSH into the Synology Surveillance box. I can ping the Synology box from the 192.168.1.0/24 subnet, however, if I SSH into the Synology box, I can’t ping out to the internet.

Any help would be appreciated.

Thanks,
Alan
alanandcorinAsked:
Who is Participating?
 
masnrockCommented:
You should even be able to use the web interface of DD-WRT. Basically, you want to have 2 VLANs, each tied to whichever ports you'd like them set up to. That will allow you to have 2 physical connections to the switch, where you can configure the appropriate VLANs. The port that goes to the living room will obviously be configured to VLAN2, along with whichever ports will be going to the cameras.
0
 
Niten KumarPrincipal Systems AdministratorCommented:
Check the NAT settings on the Netgear  router.  Is it NATing for 192.168.2.0 network.
0
 
alanandcorinAuthor Commented:
Nitenkumar, how could I check to know if it's NATing for the 192.168.2.0 network?  I can run linux commands from the Synology box on 192.168.2.4.  

Are the home Netgear routers capable or NATing to two networks? Is this possible with the standard firmware? Do I need to upgrade to DD-WRT or even another type of WiFi router?

Thanks for your help.
Alan
0
On-Demand: Securing Your Wi-Fi for Summer Travel

Traveling this summer?Check out our on-demand webinar to learn about the importance of Wi-Fi security and 3 easy measures you can start taking immediately to protect your private data while using public Wi-Fi. Follow us today to learn more!

Check it out!
 
alanandcorinAuthor Commented:
Shouldn't it be possible for the SG300 to correctly route from VLAN2 to the internet with ACL rules?

Thanks,
Alan
0
 
Niten KumarPrincipal Systems AdministratorCommented:
Are you a able to login to the console of the Netgear router?
0
 
alanandcorinAuthor Commented:
Sorry, there's no SSH nor Telenet access to the stock netgear firmware.
0
 
Niten KumarPrincipal Systems AdministratorCommented:
How about web access?
0
 
alanandcorinAuthor Commented:
The router has remote management access, but all you'll get is the same GUI screens that I have access to.
0
 
alanandcorinAuthor Commented:
I updated my router to DD-WRT, so I can SSH and run commands from the console. What do you suggest?
0
 
masnrockCommented:
Question answered
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.

Advertise Here