Setting up vLAN Switch

kool_kid · 02-04-2008, 02:00 PM

I bought a vLAN enabled switch its D-link Des-1226, now I'm facing problem making it work. Anybody have any experience with setting up vLAN on any D-link switch, or can give me some pointers as to how it is done. I'm very much confused with VID, PVID, trunk, untagged port, tag port. Can someone tell me when to use what option.

centauricw · 02-04-2008, 05:54 PM

Welcome to advanced networking. VLANs allow you to segregate a switch into multiple, virtual LANs. (But you knew that :-). You need to configure each port on the switch to be part of a VID. Only ports that are configured with the same VID number can talk to each other. For example, if Port 1 is set for VID 1 and Ports 3 and 4 are set for VID 2, no traffic can flow between Port 1 and Ports 3 or 4 unless it is through a router. This is the 50,000 foot view and there is more to it, much you are going to need to sit down with the manual and try different configurations to see what will work for the way you want it set up.

Good luck.

kool_kid · 02-04-2008, 11:31 PM

Thanks for the reply could you please tell me what is PVID and whats the relation of PVID with VID.

acid_kewpie · 02-05-2008, 10:53 AM

The 1226 appears to be a dumb gig switch, no vlan's no nothing...

a pvid is a port vlan identifier, i.e. the vlan that a port is on. a vid is a vlan id, which is the vlan itself in abstract to a physical port.

kool_kid · 02-26-2008, 05:11 PM

Yeah it was. So i got a new Linksys SRW224G4, and things are working out quit good till now.

I able to get vlans working but its kind of not segregated. The vlan 30.2 and ping 20.2 and vice versa, offcourse i dont want that to happen, I want 20.2 to be alone in its network and 30.2 to be alone can someone tell me how do i do it?

here are the screen shots of my configuration.

port e2 in switch get the direct cable from vyatta,

the create vlan screen shot is here

http://i31.tinypic.com/11sfh4h.jpg

The port settings screen shot is here

http://i31.tinypic.com/25sudjb.jpg

Port to Vlan Mapping for switch default Vlan1

http://i25.tinypic.com/16blhti.jpg

Port to Vlan Mapping for Vlan 20

http://i30.tinypic.com/rkwilf.jpg

Port to Vlan Mapping for Vlan 30

http://i31.tinypic.com/1dy0b6.jpg

Vlan to port mapping, the port e2 here is joined to vlan's 20T and 30T

http://i29.tinypic.com/w66wx.jpg

Please help me

.

acid_kewpie · 02-27-2008, 03:03 AM

well i don't know that device, but there's nothing "obviously" wrong with that at all. presumably you just need to use the separate firewall functionality on the box to filter it.

rossonieri#1 · 02-27-2008, 11:00 AM

hi kool_kid,

i'm not too familiar with that linksys either - so forgive me

[edit]
ouch - i did not read the other firewalling part.

[/edit]

just dont give the vlan member stations (your PCs) a default gateway - or you can create firewall rule on the vyatta router.

HTH.

acid_kewpie · 02-27-2008, 11:18 AM

oh yeah, missed the vyatta bit... so that's the bit at "fault" then, but still there's no real problem here at all from what i see.

kool_kid · 02-28-2008, 02:37 PM

Thanks for the replies guys, thats working but now i have assign firewall rules in vyatta and also how do enable internet after enabling firewall rules in vyatta, i mean what kind of rule i need to add to vyatta firewall.