Port X is blocked! Could it be the router?
I have my SG2218 switch connected with a ER707-M2 router and I'm using Omada.
Works fine when I only connect one router port on the switch but when I connect another one then the switch port it's connected to is getting blocked.
Is it because I have two cables going from the router to the switch?
Configuration is default, no vlans.
On Omada:
- Settings -> Wired networks -> LAN -> Networks tab
- Only have the default LAN interface (it's configured for all the router ports)
- Settings -> Wired networks -> LAN -> Profile tab
- Only have the 3 default profiles (only the ALL profile is used for the switch ports)
- Settings -> Wired networks -> LAN -> Switch Settings tab
- Every switch port is using the ALL profile
Error message in the log (my SG2218 is named Switch, I know, quite original LOL):
- Switch's port Gi1/0/5 was blocked.
and it keeps outputting this every few seconds...
I suspect a loopback but it should be supported right?, having multiple connections between a router and a switch?
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Ok, I've scoured the 'net and it's definitely a loopback problem.
I thought this would be possible and the reason comes from the Omada "Create New LAN" page where all the router ports are listed.
All tutorials I saw always mention having all those ports selected when creating a vlan. I wondered if it would be possible to "segment" physically the lans by only selecting one router port for a VLAN in addition of assigning a profile to switch ports with the same VLAN.
I seems it's not possible or I am not understanding something (or a lot of things LOL).
- Copy Link
- Report Inappropriate Content
if you want to isolate them, use ACL.
in this setup, you are using vlan interface. it's communicable. https://www.tp-link.com/en/support/faq/3061/
only when you set up the ACL, do you start to isolate them. vlan interface is a set of functions working together. if you simply want to isolate network by function - 802.1q vlan, refer to other guides like: https://www.tp-link.com/en/support/faq/2149/
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Ok, I've scoured the 'net and it's definitely a loopback problem.
I thought this would be possible and the reason comes from the Omada "Create New LAN" page where all the router ports are listed.
All tutorials I saw always mention having all those ports selected when creating a vlan. I wondered if it would be possible to "segment" physically the lans by only selecting one router port for a VLAN in addition of assigning a profile to switch ports with the same VLAN.
I seems it's not possible or I am not understanding something (or a lot of things LOL).
- Copy Link
- Report Inappropriate Content
you are right. it is the loop back. you are putting your switch into a loop by connecting two cables.
this is never a recommended way to do this.
since other comments above said by you mentioned that you don't understand why it's vlan configured, and still got such an issue, the reason is simple.
you set up vlan, but not in the right way. native vlan(default vlan) = vlan id 1, this is not possible to delete. unless you put this port into a different vlan, like pvid= 2, vlan id = 2, and you set the other port on the switch the same, you can make them separate.
yet this only happens in standalone mode, as the controller mode, you cannot set the port vlan which is possible in standalone.
you do seem to make it worse. suggest you read the article about the vlan config. get a clue about vlan before you jump into the config:
- Copy Link
- Report Inappropriate Content
Thanks for confirming my hunch 😀
You're saying that I setup VLAN but not in the right way... Are you refering to ACL? I'm in the process of isolating each vlan using those
- Copy Link
- Report Inappropriate Content
if you want to isolate them, use ACL.
in this setup, you are using vlan interface. it's communicable. https://www.tp-link.com/en/support/faq/3061/
only when you set up the ACL, do you start to isolate them. vlan interface is a set of functions working together. if you simply want to isolate network by function - 802.1q vlan, refer to other guides like: https://www.tp-link.com/en/support/faq/2149/
- Copy Link
- Report Inappropriate Content
Thank you so much!
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 888
Replies: 6
Voters 0
No one has voted for it yet.