Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
738
Views
0
Helpful
4
Replies

Multiple VLANs on single port for SG350X Switches

Go to solution
cbcav
Level 1
Level 1

‎08-31-2021 08:25 AM

Hello!

 

I want to setup multiple VLANs on single ports on two of my switches. I am doing this to separate our Staff / Guest internet access. I'm not sure if I set this up properly, but here is my setup:

 

  • DHCP / VLANs setup through Meraki Firewall: VLAN1- Staff Wired/Wireless (172.30.0.0/21) VLAN10- Guest WiFi (172.30.8.0/24). Port 9 to SW1 is set to Trunk and to allow all traffic.
  • Ruckus ZoneDirector for WAPs- SSIDs- Staff WiFi (VLAN 1) and Guest WiFi (VLAN 10)
  • SW1- XG2 (From Meraki) set to Trunk
    • GE1 (to SW2) set to trunk
      • VLAN1 set to tagged
      • VLAN10 set to tagged
  • SW1- GE10-GE18 (WAPs)
    • VLAN1 set to tagged
    • VLAN10 set to tagged
  • SW2- XG2 (From GE1 on SW1) set to trunk
  • SW2- GE 40-48 (WAPs)
    • VLAN1 set to tagged
    • VLAN10 set to tagged
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎08-31-2021 08:43 AM

Hello @cbcav ,

the proposed setup looks like correct there is only one aspect to investigate:

check the native VLAN default settings on the devices in most cases it is i VLAN1 and it is expected untagged.

in an 8021.Q a single VLAN can travel untagged and this is by default for most vendors VLAN 1.

 

 

Hope to help

Giuseppe

 

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎08-31-2021 08:43 AM

Hello @cbcav ,

the proposed setup looks like correct there is only one aspect to investigate:

check the native VLAN default settings on the devices in most cases it is i VLAN1 and it is expected untagged.

in an 8021.Q a single VLAN can travel untagged and this is by default for most vendors VLAN 1.

 

 

Hope to help

Giuseppe

 

0 Helpful

Go to solution
cbcav
Level 1
Level 1
In response to Giuseppe Larosa

‎08-31-2021 09:01 AM

Thank you for the reply! VLAN1 is the default one on both switches, should I change VLAN1 to untagged for both? Also, I just found an article from Cisco's site, and the 'advanced mode' showed has a 'general' option for the VLANs. Would that be more ideal over trunk? 

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to cbcav

‎08-31-2021 02:56 PM

Always suggest to have native VLAN both the side same when you configuring trunk.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
cbcav
Level 1
Level 1

‎09-03-2021 03:00 PM - edited ‎09-03-2021 03:00 PM

So I'm stumped. On SW1 I am able to get both VLANs to work, but on SW2 I get APIPA, here is what I have setup:

 

SW1

  • VLAN 1- All ports untagged
  • VLAN 10
    • GE7 Tagged (Goes to SW2)
    • WAPs Tagged (Both subnets working great)
    • XG2 Tagged (From Meraki)

SW2 First Attempt:

  • VLAN 1
    • WAPS tagged 
    • All other untagged
  • VLAN 10
    • WAPs untagged (Staff subnet works, Guest APIPA)
    • XG2 tagged (from SW1)

SW2 Attempt 2:

  • VLAN 1
    • All ports untagged
  • VLAN 10
    • WAPs tagged (Staff subnet works, Guest APIPA)
    • XG2 tagged (from SW1)
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card