I have purchased new equipment in hopes of setting up some VLANs for IoT. I am fairy new to advanced networking, so please bear with me.
Protectli 1410 running 25.12.2 as main router. ISP into eth1, LAN out of eth0
I have added br-lan.20 VLAN ID 20, and br-lan.30 VLAN ID 30. I used these to create a users and iot interface with dhcp x.x.20.0/24 and x.x.30.0/24 respectively. Firewall is set lan to wan with in-accept, out- accept and intra- accept. wan to reject with in- reject, out- accept and intra- reject
No further settings made.
Cudy managed switch VLAN1 untagged 1-16, VLAN 20 and 30 tagged 2&4 untagged 1. All PVIDs are 1.
2x Flint 3 - set in AP mode. This is where I'm getting errors. I have created the same br-lan.20 & br-lan.30, associated them to the radios and disabled DHCP. I keep getting locked out of the APs and require factory resets.
I assume the firewall should be empty inside the APs. I assume that the upstream should be plugged into the WAN port, but I've also tried in LAN. I can't exactly trace the issue as I keep hitting a wall. Either I don't get DHCP and set a static IP. Or I'll get the correct range, but completely lose access to the AP management and can no longer continue configuration.
Is there something obvious I'm missing here? I assume that upstream is working fine as I can typically get a DHCP address before moving into the radios portion.
Am I doing too much? I tried to simplify it numerous times to just a single basic radio in a vlan but every attempt has failed.