Hi all,
I have an old modem-router combo that I'd like to tinker with.
I'm trying to recycle it into a flexible machine to keep around for emergencies and, in the meantime, to learn a bit more about vlans.
The unit is a Technicolor TG789vac v2 with a custom OpenWrt based firmware.
It's very popular here in Italy, in many ways is the equivalent of a BT HH5a, but with no official support.
It will be paired with another recycled unit: an HP ThinClient T520.
The HP will be the main router, while the Technicolor will act as managed switch ++
I already spent some time with it without success, so here I am asking for help
In an x86 with an Ethernet port directly connected to the CPU, just use the notation option ifname 'eth0.7' etc to designate a network will generate/receive VLAN tagged packets on the port. There's no such thing as type 8021q. Also don't have eth0 with no VLAN number anywhere in your config.
This is a good example to use a baby steps approach rather than trying to implement the whole grand final configuration and expecting it to work at the first go. First thing I would do is put a VLAN number on the T520's existing lan network then configure the other router to tag that number bridged from a wired or wifi interface so you can log into the T520 again.
Have the usb-HID drivers on the T520 so you can use a local keyboard when you lock yourself out of Ethernet. I think they are included on recent builds.
I managed to have the trunk working, my problem now is how to get the dhcp lease on a device connected on eth2 and later how to configure the firewall.
Do I need it?
Yes, I'm working on the t520 by local keyboard and monitor.
Sorry for the latency, but I'm working on it while typing
config interface 'loopback'
option ipaddr '127.0.0.1'
option proto 'static'
option netmask '255.0.0.0'
option ifname 'lo'
config globals 'globals'
option ula_prefix 'auto'
option default_ps '0'
config device 'vlan_dsl'
option name 'vlan_dsl'
option mtu '1500'
option vid '835'
option ifname 'ptm0'
option type '8021q'
config device 'vlan_eth0'
option mtu '1500'
option vid '1'
option name 'vlan_eth0'
option ifname 'eth0'
option type '8021q'
config device 'vlan_eth1'
option mtu '1500'
option vid '1'
option name 'vlan_eth1'
option ifname 'eth1'
option type '8021q'
config device 'vlan_eth2'
option mtu '1500'
option vid '1'
option name 'vlan_eth2'
option ifname 'eth2'
option type '8021q'
config device 'vlan_eth3'
option mtu '1500'
option vid '1'
option name 'vlan_eth3'
option ifname 'eth3'
option type '8021q'
config switch 'bcmsw_int'
option qosimppauseenable '0'
option type 'bcmsw'
option jumbo '1'
option unit '0'
option enable_vlan '0'
option reset '1'
config switch 'bcmsw_ext'
option qosimppauseenable '0'
option enable_vlan '0'
option unit '1'
option jumbo '1'
option type 'bcmsw'
option reset '1'
config switch_vlan 'lan_switch'
option ports '1* 2* 3* 4* 8t'
option device 'bcmsw_ext'
option vlan '1'
config interface 'ctrl'
option proto 'dhcp'
option ifname 'eth3.6'
config interface 'lan1'
option type 'bridge'
option ipaddr '10.78.9.254'
option netmask '255.255.255.0'
list ifname 'eth2'
option ipv6 '0'
option igmp_snooping '1'
option ip6assign '0'
option force_link '0'
option proto 'static'
config interface 'dsl'
option type 'bridge'
list ifname 'ptm0.835'
list ifname 'eth0'
config interface 'lan2'
option type 'bridge'
option proto 'dhcp'
list ifname 'eth1.7'
list ifname 'eth3.7'
config interface 'wan2'
option type 'bridge'
option proto 'dhcp'
list ifname 'ptm0.835'
list ifname 'eth3.8'
config interface 'wan'
option reqopts '1 3 6 15 33 42 51 121 249'
option ipv6 '0'
option iface6rd '0'
option vendorid 'Technicolor'
option release '1'
option proto 'pppoe'
option auto '1'
option username 'timadsl'
option password 'timadsl'
option ifname 'eth4'
option authfail '0'
option mtu '1500'
With this config I can access the device by connecting to eth2 directly or by ssh from the t520 on both lan and ctrl interfaces. I can't get a dhcp lease if i connect on eth1.
All the lines about vlan_xxxX and broadcom switch should be irrilevant: I disabled vlan on bcmsw_ext, to disable internal switch tagging.
It was configured to access the interfaces by using vlan_ethX by default.
I can get the pppoe-wan1 working on the TG789 if i connect eth4 to my home router which have pppoe-relay enabled and the dsl cable connected to its modem port.
I can get my home router pppoe-wan working if i connect it to eth0 and move the dsl cable to the TG789 rj11 modem port.
I can't get pppoe-wan1 working on TG789 if i connect eth0 and eth4 with a cable.
I can't get pppoe-wan2 working in the t520 through trunk.
Let's keep it simple:
I have tagged traffic on one port, how can I get untagged traffic for vlan 7 and 8 on two other ports.
I'd like to make it work both with enable_vlan=1 on bcmsw_ext and with enable_vlan=0 to understand the differences.
@LuKePicci
can you please help me?
I know you already have experience with this subject:
rj11 rj45 rj45
[__] [_0_][_1_][_2_][_3_] [___]
dsl port switch port wan
[_8_]
ptm0 eth0 eth1 eth2 eth3 eth4
in MST firmware you have by default a switch vlan 1 on the external switch including all untagged ports from 0 to 3 and tagged port 8, remove 0 1 and 3, keep only untagged 2 and tagged 8
keep the existing vlan_eth2 with vid 1, remove all except vlan_eth2 from lan bridge ifnames, the third rj45 hole (port 2, eth2) will continue working as per default settings
create a switch vlan 2, include untagged port 0 and tagged port 8
change the existing vlan_eth0 to vid 2
create a wan bridge, include vlan_:eth0 and ptm0 in ifnames
create switch vlan 7, include untagged port 1 and tagged port 3, I'm not sure why you talk about lan2, if you don't need that vlan to go up to the main system do not include tagged port 8, otherwise include it as well
if you needed to get vlan 7 up to the main system, change existing vlan_eth3 to vid 7 and create a lan2 interface (not a bridge) with just vlan_eth3 as ifname
It works!
My config is not ready yet, but I'll post the relevant files once completed.
Do you recommend to keep it with bcmsw_ext enable_vlan=1 or to disable it and change config accordingly?
Also, do you know how to change the i button's handler? I'd like to execute a simple script I'm writing.
Hi friend, I've been trying to use my vac789 as a managed switch myself.
Alas, with no success.
NEVERTHELESS this post gives me hope!! lol
Can you please explain your final config file and the end result,
so I can understand how things come together?
I'm trying to convert my vac789 so it'll "switch" like so:
eth4 should receive tagged traffic on vlans 100,200 passed from my switch,
eth3 + 2G network should be on vlan 200 and forward untagged traffic to the port and access point. (iot network)
eth2 + 5G network should be on vlan 100 and forward untagged traffic to the port and access point. (guest network)
Still can't get my head wrapped around how to do it.