Help with VLAN on a Netgear Switch

Hi Adam,

VLANS are kept isolated by the switches & routers that include VLAN support, you can use port or tagged based vlan's on Netgears. Although a relatively simple concept it may not be easy to advise you over a chat.

I'd suggest having a look here as it explains VLAN's with examples etc related to the Netgear ProSafe switches.
https://kb.netgear.com/29997/How-to-create-Layer-2-VLANs-on-NETGEAR-ProSAFE-Switches

Hope it helps.
Colin

We have a LAN here and a user wants to be able to plug a Netgear GS108E managed switch into it and configure it so it is on an entirely different subnet and is not detectable to other network users.

2 major points of note here: 1) IT should be selecting the equipment to accomplish this, not the user. 2) IT should be managing said equipment, not the user.

In addition, this should be going through the business justification process, etc. Can't just set this up because someone randomly decides they want to have it. Sets a very dangerous precedent. Collect the requirements and business justification, then work through how it complies with policy, feasibility, and what would be necessary to accomplish this. Another thing to point out is that the appropriate approvals exist. (I'm not accusing this of being a rogue project, but best that all procedures are followed)

Firstly is this possible and secondly is this what can be done by setting up a VLAN on the Netgear?

Possible yes. The article that Colin provided explains how to create a VLAN on the Netgear switch, but doesn't help you understand VLANs. I highly recommend you take the time to understand them first (or get someone to assist you on the job, whether it's hiring a consultant or through a gig on here). I don't know about your budget or the requirements of the setup, but using a smart switch instead of a managed one can lower the cost quite a bit. Becomes a matter of what actually suits your needs. You really should get another party involved if you're going forward with this.

Now, that said, you ideally want to have the VLANs exist on your router, and also have the managed switch you use configured to understand them. Which router (brand and model) do you have?

Many thanks both of you, the routing is done via a Watchguard XTM25 Firewall.

Thanks

VLANs can be set up on your Watchguard (here is an article from Watchguard: https://www.watchguard.com/help/docs/wsm/xtm_11/en-us/content/en-us/networksetup/vlans_about_c.html. However, you'd still need a smart or managed switch in order to get the desired result. The reason why I recommend putting the VLAN at the router level is because you'll be able to notice faster what you have going on with subnets. Also, are there any switches between the Watchguard and the proposed switch? If so, what model? A key thing is going to be the fact that the switch in between passes along traffic for all VLANs that come through it.