Implemented mDNS Service
Hello I was wondering in Omada where I can find the mDNS service ?
I have a TL-R605 router but some IoT devices (especially the once that use Apple HomeKit) do not work or better are unreachable when I put them in a different subnet using VLANs, this is very annoying.
Looking on internet everyone many tutorial (all made on Ubiquiti or sometimes other routers) explain that mDNS repeater is needed, but can't find it in Omada anywhere.
Or eventually is there a workaround or non explicit way to have this done ?
Thanks
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
I would also like to throw my vote in for adding mDNS to the omada controller + er605 setup. Interlan firewall and routing rules are a close second after that. IoT on a separate vLAN is networking and security 101 these days. There is NO WAY I will add my LG stove to vLAN with my other clients, as an example. There is just no way LG patches their stoves regularly.
I otherwise really like the tp-link omada product lineup and features.
- Copy Link
- Report Inappropriate Content
Though I'd love to have mDNS, the lack of it should not prevent you from assigning your LG stove to your IoT VLAN. Most people need mDNS only because some of their IoT devices (like chromecast) need to do inter-vlan broadcast.
- Copy Link
- Report Inappropriate Content
Well if this:
"Interlan firewall and routing rules are a close second after that."
would work, XStreem would probably do that. But it does not and therefore it does not matter if he/she uses a vlan or not, because it does not offer any protection right now.
- Copy Link
- Report Inappropriate Content
@Softtryme mDns is needed because devices that just uses Bonjour (typically Apple) but not just Apple cannot communicate if not in the same vlan.
Think for example to use AirPrint you cannot print if not in the same printer lan or DLNA on a tv that access a NAS or all devices that uses Apple HomeKit like some smart lamps.
And for security and segmentation reason I don't want to have my phone, printers, TV, NAS, iot stuff in the same network.
- Copy Link
- Report Inappropriate Content
I'm pretty sure you can use ACL rules to achieve inter-vlan routing rules. This is exactly how I implemented it. and therefore my IoT and camera vlans are unable to talk to my main LAN. I even blocked my camera vlan's access to the router, which makes them strictly "offline" ip cameras.
- Copy Link
- Report Inappropriate Content
Yes I got what you are saying. Printer is indeed a legit use case. But does your LG stove use bonjour? I was trying to say nothing should prevent you from adding your smart stove to your IoT vlan, because it doesn't do any sort of broadcast.
- Copy Link
- Report Inappropriate Content
I am pretty sure that this is not possible, because some weeks ago when I was trying to do that, based on a unify tutorial, it would not work because tplink does not provide the features for it.
- Copy Link
- Report Inappropriate Content
Maybe you shouldn't be following unifi tutorials when setting up TP-Link equipments. Check this out https://youtu.be/7i17jvrIjD0?t=721. This is exactly how I did it.
- Copy Link
- Report Inappropriate Content
Maybe you should not assume that everybody has the same needs as you do.
I was/am not the only one with this problem and as far as I know it has not been resolved yet:
https://community.tp-link.com/en/business/forum/topic/252860
And one has to ask why an advertised "professional" system is not able to do such things even after months of possible firmware updates.
- Copy Link
- Report Inappropriate Content
I did not assume anything. OP Xstreem said "There is NO WAY I will add my LG stove to vLAN with my other clients, as an example.", which clearly indicates a one-way denial: block traffic from IoT to main LAN, regardless of who the initiator is. So I don't understand why your problem could prevent him from adding his stove to his IoT vlan.
Regarding the point you made, yes it would be a great feature to have. I have many IP cameras myself too, but I don't have your problem, because all of my cameras connect directly to my synology NAS, which has two ethernet ports. I just dedicated one of them to my camera VLAN.
I never really take their "professional" "business" buzz words too seriously. The only reason I chose Omada is because it can offer about 80% of what Unify can offer, at a much lower cost.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 42
Views: 79715
Replies: 255