Hi, I`m in the process of setting up VLANs and get stuck here.
After changing the LAN interface device from br-lan to br-lan1, I can access the internet normally and can access the GL-inet/luci admin page.
But when I put the ethernet cable back into my ISP router, I have no internet access and cannot access the ISP router admin page.
Noob here pls help.
Hi
Could you clarify why VLAN configuration is needed in your setup?
It may help if you can provide a simple network topology diagram so we can better understand the overall layout.
Also, please share your device model and firmware version.
Furthermore, if you're unsure how to reset the device to regain access to the GL-inet/Luci admin page, please refer to Repair network or reset - GL.iNet Router Docs 4
Sorry of course. I use the Flint 2. What tool would you recommend on Linux to make a network topology diagram?
For now I just write in as best I can describe:
Internet comes from my ISP Fritzbox router/modem device. Connected over Lan with the Wan Port of my Flint 2. On the Flint 2 made all available Lan Port Untagged part of VLAN1 (br-lan1) and changed the Lan interface device to br-lan1.
So far so good I have Internet and all and now I want to make Lan1 and Lan2 Vlan 10, Lan3 VLan 30, Lan4 not participate and Lan5 Vlan 50. All Untagged.
But I didn`t bother implement that after I realized that after Step 1 first making all Part of Vlan1, like suggested in in another guide in the forum, that I couldn`t use the Internet when putting in the ethernet cable from the laptop back into the ISP device nor accessing the ISP device admin page.
It was also the same when I tried the way a youtube tutorial in my first attemts, so I did factory reset, but stumbled upon the same problem.
That`s a Problem because I might need to access My ISP device in the future.
Use wan and configure with dhcp. When i use FTTC with my fritzbox i do it, fritz only modem, flint 3 routing, configuration: DHCP. Now i have FTTH and my isp tell me use PPoE, no i have ont - flint 3
hmm, so on the flint 2 you keep wan untouched correct?, I have seen people before being confused about the wan section since it has a vlan entry.
^ these entries are only if you want the router to replace the isp router in this case fritzbox (isp settings)
in br-lan, if you edit the DSA bridge you have the tab vlan bridge filtering did you use the vlans there?
Be aware that it isn't recommended to use multiple bridges, you want it simplified as much as possible by using a single one, and you also don't want to access bridge child vlan devices in concurrent bridges on the OpenWrt forums they told me to not do, because when DSA got implemented it wasn't made for this intention, and it can cause unexpected effects like loops, this depends also how well it is implemented, it maybe now works, but as they told me it wasn't their intention, it can also future break(!).
I assume you use only untagged ?, if tagged is involved you need a second vlan aware device which can manage the tagged vlan, since tagged vlans are not ment for destination ports, more as passthrough, untagged however cease to not exist after the current port and in OpenWrt basicly also behaves as PVID for that port, you have also primary vlan id as checkbox this only indicates more priority over the current untagged vlan, in the end only one untagged vlan can be used per port, for tagged vlans there can be more but these are not for the final destination port these can also be combined with untagged ports just fine.
If that logic makes sense to you, then I'm very interested to have a look into the configuration for:
/etc/config/network/etc/config/firewall/etc/config/dhcpAlso... I have seen this confusion aswell:
People who read the isp settings on their isp site or in isp router, and then think their downstream router needs to use these vlans or pppoe, this is wrong, the isp router does only use it to get internet, these vlans are not sent downstream, often aswell also not in bridge mode scenarios unless it is explicitly stated by isp.
Often bridge mode just applies some kind of DMZ to the router, so it is just fine the router uses dhcp as wan with no vlans, this can be reflected by the hops when performing a tracert in cmd in windows, or traceroute in linux, the isp router still appears as hop.
I hope this can give some insight or helpfull clues to get you started 