I would like my SRP527 router to manage 2 VLAN.
1 for my whole LAN and employees WIFI connections, another one for external clients to access Internet by guest WIFI SSID.
- I have this Cisco SRP527W router acting as a gateway between my LAN and Internet.
- I have a second router used for VPN connections between my LAN and 2 external agencies.
- My LAN is using 192.168.0.0 / 255.255.255.0 network
- External Agence 1 is using 192.168.1.0 / 255.255.255.0 network
- External Agence 2 is using 192.168.3.0 / 255.255.255.0 network
The Cisco Router is using 2 VLAN :
-VLAN 1 (LAN port 4 and SSID 1) -> 192.168.0.254 / 255.255.255.0
-VLAN 3 (SSID 2) -> 10.33.0.254 / 255.255.255.0
The Cisco router is using 2 static routes :
- Agence 1 : 192.168.1.0 / 255.255.255.0 -> Gateway 192.168.0.249
- Agence 2 : 192.168.3.0 / 255.255.255.0 -> Gateway 192.168.0.249
The VPN router for external agencies is using 192.168.0.249 / 255.255.255.0.
When the SRP527W router has intervlan routing enabled, everything is working. I can ping my external agencies. However, external clients using guest WIFI can also ping my internal LAN.
Disabling intervlan routing separate VLAN 1 and VLAN 3 properly, but i can't ping my external agencies anymore and i don't know why ?
Behind my Cisco router :
- 1 HP Gigabit switch (servers, VPN router are connected to it)
- 2 Switchs (HP and Accton) both linked to the gigabit switch and where all my clients are connected.
No trunk link and vlan are defined on my switches.
The CISCO Hotline did not find the answer. I have the last firmware version. Can you help me identify why disabling intervlan routing stop link between my LAN and external agencies ?