Help required on VLAN Setup

I have an OpenWrt router with WiFi Disabled behind my ISP Router. From that OpenWrt, I have connected Omada Switch and 2 APs. The OpenWrt acts as a DHCP. I want to set VLAN in OpenWrt for IoT, Guest and other connections. Is it possible? Sorry for my novice question, if that has been asked by someone already.

Yes, this is possible. You'll start by setting up the new networks + vlans in OpenWrt, then move on to configuring the switch and APs to work with the new VLANs.

I would recommend taking this one step at a time:

  1. configure the OpenWrt router
  2. configure the switch. When doing this, you'll setup a trunk port that connects to the router as well as trunk ports that are downlinks to the APs. I would suggest that you dedicate a few ports of the switch as "access ports" for each of the VLANs (i.e. 1 port for each VLAN, untagged + PVID). This will allow you to quickly connect an ethernet device to each port in turn and verify that you are getting the right network and connectivity.
  3. configure the APs and then test wifi.

You need to define your goals for each network in terms of firewall permissions, but when you start, it may be easiest to just assign them all to the lan firewall zone just to reduce variables. You can then tighten them down if desired.

2 Likes