Hey network gurus. I want to setup vlans on a hotspot network for management (access points and servers to use vlans to communicate) I have a vlan capable router (mikrotik) and ubiquiti accesspoints and unmanaged switch. I want the access points and the server to be on the same vlan subnet and hotspot clients on a different subnet but they share the same switch (unmanaged) Am not sure if the switch will forward the VLAN id to the respective access point and server? If my setup will not work what options do i have?
You need a managed switch if you want to push vlans. Unmanaged switches can't recognize vlan tagging. I believe I understand what you're trying to accomplish - the best way to do that on unmanaged switches is to set up IP binding under /ip hotspot ip-binding You can at least exclude the mac addresses of the network devices you want to access without the hotspot clamping down its packets. You need to set up an IP on the MT router on the interface serving the hotspot - at least from that point you should be able to ping the network devices from the MT once the binding has been set up. The ip-binding type is bypassed. For example: /ip hot ip add mac-address=00:15:6D:xx:xx:xx type=bypassed comm=ubnt If the ubnt device is on the default ip 192.168.1.20/24 then you should be able to ping it from an ip on the same subnet assigned on the MT interface where the hotspot is running. On Wed, May 12, 2010 at 11:39, Job Muriuki <muriukin@gmail.com> wrote:
Hey network gurus. I want to setup vlans on a hotspot network for management (access points and servers to use vlans to communicate) I have a vlan capable router (mikrotik) and ubiquiti accesspoints and unmanaged switch.
I want the access points and the server to be on the same vlan subnet and hotspot clients on a different subnet but they share the same switch (unmanaged)
Am not sure if the switch will forward the VLAN id to the respective access point and server? If my setup will not work what options do i have? _______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
I am currently using ip-binding under hotspot and i tried putting all ips to the network devices on the ip-binding list and turned on hotspot server and the network stalled. That aside, can i have the server and ubnt devices on 192.168.1.0/24 network and dish out ips to clients through hotspot from the dhcp server,network 192.168.8.0/21 and they are on the same interface on the mikrotik router. So that i do away with vlans for now until i get a managed switch? On Wed, May 12, 2010 at 12:05 PM, Haggai Nyang <haggai.nyang@gmail.com>wrote:
You need a managed switch if you want to push vlans. Unmanaged switches can't recognize vlan tagging.
I believe I understand what you're trying to accomplish - the best way to do that on unmanaged switches is to set up IP binding under /ip hotspot ip-binding
You can at least exclude the mac addresses of the network devices you want to access without the hotspot clamping down its packets. You need to set up an IP on the MT router on the interface serving the hotspot - at least from that point you should be able to ping the network devices from the MT once the binding has been set up. The ip-binding type is bypassed.
For example:
/ip hot ip add mac-address=00:15:6D:xx:xx:xx type=bypassed comm=ubnt
If the ubnt device is on the default ip 192.168.1.20/24 then you should be able to ping it from an ip on the same subnet assigned on the MT interface where the hotspot is running.
On Wed, May 12, 2010 at 11:39, Job Muriuki <muriukin@gmail.com> wrote:
Hey network gurus. I want to setup vlans on a hotspot network for management (access points and servers to use vlans to communicate) I have a vlan capable router (mikrotik) and ubiquiti accesspoints and unmanaged switch.
I want the access points and the server to be on the same vlan subnet and hotspot clients on a different subnet but they share the same switch (unmanaged)
Am not sure if the switch will forward the VLAN id to the respective access point and server? If my setup will not work what options do i have? _______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Regards, Job Njogu Muriuki, Phone: (+254) - 772333075 | 736333075 Skype: heviejob | Yahoo: heviejob Address: 42665 00100 Nrb
That's interesting, I have a setup where I have separate subnets for management ips and for hotspot clients and I don't have an issue accessing the wireless devices. I've never had to use a managed switch there. In what exact way did the network stall? On Wed, May 12, 2010 at 12:20, Job Muriuki <muriukin@gmail.com> wrote:
I am currently using ip-binding under hotspot and i tried putting all ips to the network devices on the ip-binding list and turned on hotspot server and the network stalled.
That aside, can i have the server and ubnt devices on 192.168.1.0/24network and dish out ips to clients through hotspot from the dhcp server,network 192.168.8.0/21 and they are on the same interface on the mikrotik router. So that i do away with vlans for now until i get a managed switch?
On Wed, May 12, 2010 at 12:05 PM, Haggai Nyang <haggai.nyang@gmail.com>wrote:
You need a managed switch if you want to push vlans. Unmanaged switches can't recognize vlan tagging.
I believe I understand what you're trying to accomplish - the best way to do that on unmanaged switches is to set up IP binding under /ip hotspot ip-binding
You can at least exclude the mac addresses of the network devices you want to access without the hotspot clamping down its packets. You need to set up an IP on the MT router on the interface serving the hotspot - at least from that point you should be able to ping the network devices from the MT once the binding has been set up. The ip-binding type is bypassed.
For example:
/ip hot ip add mac-address=00:15:6D:xx:xx:xx type=bypassed comm=ubnt
If the ubnt device is on the default ip 192.168.1.20/24 then you should be able to ping it from an ip on the same subnet assigned on the MT interface where the hotspot is running.
On Wed, May 12, 2010 at 11:39, Job Muriuki <muriukin@gmail.com> wrote:
Hey network gurus. I want to setup vlans on a hotspot network for management (access points and servers to use vlans to communicate) I have a vlan capable router (mikrotik) and ubiquiti accesspoints and unmanaged switch.
I want the access points and the server to be on the same vlan subnet and hotspot clients on a different subnet but they share the same switch (unmanaged)
Am not sure if the switch will forward the VLAN id to the respective access point and server? If my setup will not work what options do i have? _______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Regards, Job Njogu Muriuki,
Phone: (+254) - 772333075 | 736333075 Skype: heviejob | Yahoo: heviejob
Address: 42665 00100 Nrb
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
I could not access the webserver from the internet not login to MT via winbox plus the internet got slaggish from 3mbps to several kbs. On your setup is the management ip and clients on the same interface om MT?
Yes they are on the same interface. As long as you have the IP binding set up correctly (note that you don't have to assign ip addresses in the ip-binding configs) and you can ping the webserver from the MT then you should reach it from the net as long as you've set up your dnat correctly. Is your webserver on the same network as your clients? I thought it would be better if you set it upstream of your hotspotting MT - my thots My setup is this way: Internet -> webserver -> MT(hotspot) -> clients (and wireless bridges) Best Regards, Haggai Nyang Unwired Communications Limited Phone: +254-722-408837, +254-734-702262 GTalk/Skype/Yahoo: haggai.nyang Snail: PO Box 27526-00506 Nairobi, Kenya On Wed, May 12, 2010 at 13:11, Job Muriuki <muriukin@gmail.com> wrote:
I could not access the webserver from the internet not login to MT via winbox plus the internet got slaggish from 3mbps to several kbs. On your setup is the management ip and clients on the same interface om MT?
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
I have attached the setup. at the moment the server is not on the same subnet as the clients.
Hit me on chat so that we can resolve this faster. Best Regards, Haggai Nyang Unwired Communications Limited Phone: +254-722-408837, +254-734-702262 GTalk/Skype/Yahoo: haggai.nyang Snail: PO Box 27526-00506 Nairobi, Kenya On Wed, May 12, 2010 at 14:11, Job Muriuki <muriukin@gmail.com> wrote:
I have attached the setup. at the moment the server is not on the same subnet as the clients.
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
participants (2)
-
Haggai Nyang -
Job Muriuki