We are trying to deploy 10 UniFi AP-AC-LRs in our network and need some assistance. Below I will try to give a precise overview of both our setup and our goal. Please ask questions if anything is unclear.
GOAL:
We’re trying to set up three SSIDs that will be separate from our physical network and also separated from eachother.
What we’ve tried:
We’ve set up VLANs on our pfSense router/firewall. (Note: We closely followed the suggestions of this great Youtube instruction : https://www.youtube.com/watch?v=b2w1Ywt081o ). We also tried to setup trunks on our Cisco switch to our other Allied Telesis switches. All Allied Telesis switches have VLANs setup (see photos below for more details about the setup).
- NOTE:
All Aps are connected to the Allied Telesis switches. We currently have two in place for testing. They are set up on the 48 port Allied Telesis on ports 26 and 27.
DETAILED OVERVIEW OF TOPOLOGY:
SSIDs:
Organization-Guest (VLAN 310) Organization-Student (VLAN 320) Organization-Staff (VLAN 330)
UniFi Controller:
Our controller for the UniFi APs is set up on an Ubuntu Server VM in Hyper-V
NETWORK SETUP:
----------------
pfSense (router/firewall)
ISP to “WAN” --> pfSense --> Internet flows to network via “LAN” port
|
Cisco Catalyst 3650 (24-port Switch)
pfSense LAN --> Port 22 of Cisco 3650 --> Port 24 of Cisco goes out to next switch
|
Allied Telesis AT-GS950/48 (48-port switch)
Port 24 of Cisco --> AT-GS950/48 on port 48 --> Port 47 of AT-GS950/48 goes out to next switch
|
Allied Telesis AT-GS950/24 (24-port switch #1)
Port 47 of AT-GS950/48 --> AT-GS950/24 (#1) on port 24 --> Port 22 of AT-GS950/24 (#1) goes to next switch
|
Allied Telesis AT-GS950/24 (24-port switch #2)
Port 22 of AT-GS950/48 --> AT-GS950/24 (#2) on port 22
- NOTE 1: We’re not experts with VLANs and there are quite a few moving parts in this setup. Any assistance/suggestions regarding configuration would be highly valued.
- NOTE 2: Also, DHCP for these VLANS is being handled by pfSense.
