Unsolved
This post is more than 5 years old
1 Message
0
1190
June 7th, 2017 06:00
Looking for advice on configuration - different networks and vlans
I can’t get my head around this. About 2 years ago ask far as I remember we had it configured properly before I started working here. Looking at the documentation prepared by the person who set it up there was two Wireless networks setup: one for for the staff and one for the students, with Vlan1 – default for the staff, and Vlan100 for students. But at some stage I had to add another temporary network and it wouldn’t work for some reason unless I removed vlan Id in the setting on unifi software. But then the students network was not getting 10.5.20.xxx anymore IP but 10.5.0.xxx.
Now if I set any of wireless networks to VLAN200 and connect the device on wireless – It will get ip 169… or 164.xx.xx.xx… and there is no internet access. But if I type in ip settings manually, with 10.5.20.xxx it will work. Can this be setup to use 2 separate DHCP servers on two different networks?
Please let me know if I can provide any more information so it would be clearer for you if possible.
I worked on cisco equipment before but very little, I can’t figure it out now how should I manage this networks on SonicWall + D-Link switches.
What I want to achieve is I need to be able to have 3 or 4 separate wireless networks, one for the staff that can connect with X0 – ioe.ie domain, one for students for X3 interface students.ie domain. One public guest network – just to access internet but no ioe.ie or students network. And the last one spare totally separate network I could share for certain time with another institution where we can share our internet access but nothing else.
Can you please advise what would be the best practice in this case? I need to be careful as the network is live all the time now.
Details below:
Current configuration:
Firewall:
2x SonicWall NSA2400 in High Availability
Firewall Interfaces:
X0 = Lan IP: 10.5.0.200 Mask: 255.255.252.0
X1 = WAN – primary in LB group
X2 = WAN – secondary in LB group
X3 = LAN-Student IP: 10.5.20.200 Mask: 255.255.252.0
X4 = DMZ IP: 10.6.0.2 Mask 2.55.255.255.0
X5 = Ha-Link – secondary / primary firewall
2 domains setup
X0 = ioe.ie DC IP: 10.5.0.2 Mask 255.255.252.0
X3 = students.ie DC IP: 10.5.20.1 Mask 255.255.252.0 LAN-Student
41 Access Points configured with Unifi Controller 5.4.16 setup on X0 ioe.ie DC 10.5.0.2 with 1 Core wireless switch, and another 6 switched connected to the core wireless switch.
- Core wireless switch: D-Link DGS-1210-28P
| IP Address |
10.5.0.240 |
| Subnet Mask |
255.255.252.0 |
| Default Gateway |
10.5.0.200 |
Vlan setup:
VID 1 name: default untagged: 01, 03-28 tagged: N/A
VID 200 name IOE Student VLAN: untagged 02, tagged: 01, 03-28
Our Wireless core switch is connected to our main LAN switch (X0) on port 1 and to (X3) Students network switch on port 2.
- IOE-Wireless-Spoke1 D-Link DGS-1210-28P
| IP Address |
10.5.0.241 |
| Subnet Mask |
255.255.252.0 |
| Default Gateway |
10.5.0.200 |
Vlan setup:
VID 1 default untagged 01-28
VID 200 IOE Student Vlan: tagged 01-28
Settings for IOE-Wireless-Spoke 2 to 6 are same as with IOE-Wireless-Spoke1, just the IIP changes so on 10.5.0.241 – 10.5.0.247