Create subnet for cable-connected devices

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Create subnet for cable-connected devices

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Create subnet for cable-connected devices
Create subnet for cable-connected devices
2022-05-24 00:45:14 - last edited 2022-05-24 16:15:38

I have a network that is managed by an OC200 controller, connected to an ER605 router.

The access of general devices (PCs, smartphones, etc) is done via wireless network, connected to EAP 235 connected via cable to the switch connected to the ER605.
All these devices are on the 192.168.0.1/24 subnet.

 

However, I will put a server machine connected directly via cable to the switch that connects the ER605 and OC200.
As this connection is made directly to the switch, the server is on the 192.168.0.1 subnet.

 

My problem is that I don't want this server to be on this subnet, because I want to prevent people from the first subnet from accessing this server, I would like to have a subnet dedicated just for this item (eg.: 192.168.50.1/24). Because this item will also have some doors open for external access, so the more isolated, the better.

 

How do I create a subnet for this item from the OC200? Will I need any more hardware for this scenario?

 

I tried to create a LAN like the image below, but after that the internet access to the IP was not accessible. And I don't even know if it's correct.
On the new server machine we configure its IP as being fixed for this subnet (eg: 192.168.50.100), and in the DNS server we put the IPs of a public DNS.

 

  0      
  0      
#1
Options
1 Accepted Solution
Re:Create subnet for cable-connected devices-Solution
2022-05-24 04:12:23 - last edited 2022-05-24 16:15:38

  @ElTom 

 

Read this brilliant FAQ

 

https://www.tp-link.com/us/support/faq/3091/ 

<< Paying it forward, one juicy problem at a time... >>
Recommended Solution
  4  
  4  
#2
Options
4 Reply
Re:Create subnet for cable-connected devices-Solution
2022-05-24 04:12:23 - last edited 2022-05-24 16:15:38

  @ElTom 

 

Read this brilliant FAQ

 

https://www.tp-link.com/us/support/faq/3091/ 

<< Paying it forward, one juicy problem at a time... >>
Recommended Solution
  4  
  4  
#2
Options
Re:Create subnet for cable-connected devices
2022-05-24 12:48:46

  @d0ugmac1 My problem is that I am using TP-Link TL-SG1008P switch, which is not compatible with Omada and also not manageable. Will I have to put a JetStream switch (eg TL-SG3210) on the network to be able to do this?

  0  
  0  
#3
Options
Re:Create subnet for cable-connected devices
2022-05-24 15:21:36

  @ElTom 

 

Yes unfortunately.  I put in feature request to treat the 5 ports on the RR605 like a virtual switch, but without a managed switch function in your solution you cannot create ACLs in the Omada SDN controller to isolate subnets.

<< Paying it forward, one juicy problem at a time... >>
  3  
  3  
#4
Options
Re:Create subnet for cable-connected devices
2022-05-24 18:17:23 - last edited 2022-05-24 18:24:08

  @ElTom 

The TL-SG3210 (V3 !) would be suitable and the managment of VLANs and switch ACLs would be very easy.

 

If ALL clients are on the EAP an not on LAN-Ports you could play around with an amount of IP-Groups and EAP-ACLs (only a tought if you would not buy a switch)

 

But when using ACLs always remember to set up an allow rule for your managment-PC at first, so that you don't get locked out of Omada.

 

Greatings

  2  
  2  
#5
Options