I've got my isp modem connected to a Flint 2, and on the LAN2 port of the Flint 2 I've attached a TL-SG108E switch via switch port 1. On switch ports 2/3/4 I need 3 separate VLANS (20/30/40).
My laptop is connected to the Flint 2's wifi and every time I try to configure the VLAN's I disconnect and it doesn't reconnect & reverts changes. I know I'm doing something wrong because I'm new to OpenWRT.
If someone could give a reasonably detailed explanation for how to set this up I would really appreciate it. Thank you!
If I've flashed the proprietary glinet firmware off and put stock openwrt on my router how do I go about accomplishing this? I've borked the configurations trying a few times and reset it.
Vlan10 - wifi ssid with main trusted devices
Vlan20 - proxmox server
Vlan30 - plex server
Vlan40 - phillips hue light controller
Vlan50 - garbage iot on wifi
I need to connect to the server on vlan20 from a laptop on wifi (Vlan10). I also need to connect to the plex server on Vlan30 from devices on Vlan10 for both the admin panel and streaming to them. 40 and 50 just need to exist.
Assuming you're using official OpenWrt (and not the GL-inet firmware), your device is DSA and the problem may be down to sequencing of adding the VLANs. I find it easiest to directly edit the config file.
We need some more info...
Please connect to your OpenWrt device using ssh and copy the output of the following commands and post it here using the "Preformatted text </> " button:
Remember to redact passwords, MAC addresses and any public IP addresses you may have:
One suggestion that might help is that when you commit changes (Save and apply) that might change the way your device connects to the router, you turn off the connection manually on the computer (e.g. turn off wifi), then turn it back on, and reconnect. Sometimes a change requires that your computer get a new session or a new ip address from the router, but it may try to hang on to the old one, and therefore not reconnect in time to prevent the reversion.
If you've configured VLANs via Luci, check if VLAN filtering boolean is properly getting set. I experienced a bug with OpenWRT on the Flint 2 where activating VLAN filtering via Luci actually did the opposite. My was to configure it manually via UCI.
@flip404 - since it appears you're currently running the GL-inet firmware, you'll need to ask on their support channels since their firmware is considerably different than the official OpenWrt.
But if/once you have official OpenWrt installed, we can easily help you here.
I've flashed the sysupgrade .bin from OpenWRT and got it effectively bone stock. I uploaded an imagine after you replied with a super brief explanation of what I'm trying to do.. since I've borked the interface/device/vlan settings more than once and had to reset it. Just looking for a brief rundown on how to accomplish this without messing those up, again..
As I said earlier, I usually find that direct editing of the config file is the easiest way.
You'll create bridge VLANs and then use the resulting devices (I.e. br-lan.100) as the device that is in each network interface stanza.
The tricky part that can come up when doing this via LuCI (a function of sequencing) is migrating the lan from device br-lan to br-lan.x where x is your lan's VLAN (even if untagged on the port(s), you need to have a bridge-vlan for all networks)... you need to create the new bridge-vlan and update the lan's device and then apply both of those settings at the same time.
You might still be able to do it via LuCI if you're connected via WiFi (instead of Ethernet), but I've never tested this method, so it could be wrong.
What I've done is set up a separate network on one of the DSA ports, or another managemment SSID/network whilst doing the work so that I can retain access whilst changing the default network.
Otherwise you need to queue up the changes in device section and network section at the same time, then hit apply? But yeah can also change config files in all locations, get it right, then commit them.
Sorry I'm quite new to this. So I could remove lan5 from br-lan leaving lan1-lan4 on br-lan & set up a separate bridge specifically for lan5 & plug my laptop in to that?
Also here's the WiFi example. Basicalcly create empty bridge in device section. Then make a network wit static ip address and dhcp server.
Then add a wifi network to it too.
I'm cool with changing config files I've done it on plenty of other devices I've just never tried to configure a router like this. I'm mostly struggling with just conceptualizing how the bridges and interfaces cooperate to use 1 lan port to communicate to 3 VLANS & how VLAN10 would communicate with say 20/30/40 in my example.
Just had to mention that I believe this switch (at least from my recollection, on my version that i had, i've removed them from service) doesn't do vlans filtering on the management port. Management address is available on all vlans.
Plus mine literally soft locked if you accidentally send them spanning tree BPDU's =P
Interesting.. so then the br-local ssid can be used to create say br-lan10, 20, 30, 40, 50 & while configuring the eventual main ssid to be on vlan10/50 per my diagram? I'm trying to comprehend better lol.
