Hi - 

Very new to VLAN and thought I'd configured everyone correctly but just can't get it to work.

In short, I'm attempting to have a seperate WiFI SSID for IoT devices and keep them seperate from the rest of the network.  Trying to protect from hacks into our network from that new fancy coffee maker.  I've gotten stuck at creating the first VLAN...whenever I turn on VLAN on the access point, all the IOT devices can no longer connect to the internet (perhaps because they can't get an IP from the router but that's just a guess)

Here's my config (which isn't working):

• I have EAP-245 access points and have an IOT specific SSID called NAISH_IOT on VLAN 30
• I have a TL-SG108PE switch and have the EAP-245 access point on physical port 1 and a router (with DHCP) on physical port 8
• On the switch I have configured two VLANS (so far) - 
  • VLAN 1: Untagged ports 1-8
  • VLAN 30: Tagged port 1, Untagged port 8

If I remove all VLAN stuff all the IOT devices connect just fine to the NAISH_IOT SSID and then onwards to the internet.  With all the VLAN stuff configured, as per above, it looks like the IOT devices are attempting to connect to the EAP-245 but ultimately no traffic flows to/from the internet.

Again, I'm very new to this stuff and any pointers would greatly be appreciated!