Multiple WLAN's with TP-Link TL-SG116E Switch

Installing and Using OpenWrt Network and Wireless Configuration
1

Hi, a few days ago I read about OpenWrt and immediately flashed it to a FritzBox 7363SL I was using as an AP. I have a second FritzBox (without VLAN functionality) as the Router, that I don't want to flash as it is provided by the ISP. In between these two there is a sort of managed switch (TL-SG116E).

What I want to accomplish is fairly simple: Just 2 WLAN's with different VLAN's.
But after almost two days of watching tutorials and experimenting I can't get my head around it.

What I've done so far:

  • On the switch
    • tagged port(4) which the OpenWrt router is connected to
  • On the OpenWrt router
    • followed the DumpAP guide
    • set CPU and LAN 1 as tagged for VLAN 2 and 3 at the switch page
    • Added 2 WLANs (private & IOT)
    • Added new unmanaged interfaces (eth0.2 and eth0.3) that are bridged to the corresponding WLANs

But I still can't access the internet when connecting to a WLAN.

If I understood PVID correctly I don't have to set it in the Switch options as it only applies to untagged packets?

I hope you guys can help me.
Tanks!

I would like to achieve something like this:

image
image1042×755 3.9 KB

2

So you would first start fixing your ap and then later on maybe add an iot vlan port to your managed switch.

In order to set up the ap follow this guide:

and use the guest wifi as iot wifi ( and name the network and firewall zone accordingly).

Once you have the iot wifi running, you can set up the openwrt iot switch part of the fritz box and change the first port to tagged. And then finally you can set up your managed switch.

But do it really step by step to make sure each component is configure correctly before configuring the next one, otherwise debugging is horrible. So initially I would reset the managed switch and remove all vlans there, until your ap is set up correctly.

3

To do what you're saying you'd have both networks exist in the main router, yet you're also saying that your main router only has one LAN network and no ability to add more networks, let alone VLANs.

So like @Stefan1 said, locally route the IOTs on the OpenWrt router and NAT them out to the Internet through your existing LAN. Which will remain only one network (all untagged) since that is all that the main router can do. There is no usefulness of VLANs in the switch if they can't be sent onward to the main router.

The locally routed IOT setup also includes a firewall to block the IOTs from reaching any IPs of devices on your LAN. They only have the Internet.

4

Thank you both for the help. I'll try it out tomorrow.

Yep already noticed that.
Looks like another nice community to me :+1:

5

Sorry, I totally forgot to reply. I now decided to buy a fast enough router and use this as the main one behind the ISP's FritzBox. But thank you for your help again.