I need some advice on how to set up 2 VLANs (on one switch, I have HP v1910-48G switch) that separate broadcast domain and also share a single internet connection. The two Vlans must remain separate, and cannot communicate with each other.
I did some searching and then found this example
And this is what I tried (Editted):
- I have a HP-1910 48 ports layer 3 switch.
- I connected a cable to the router (Linksys X1000, at 192.168.0.253) to the switch (backbone) on port 1. (vlan1, default)
- I created another vlan 2 and then tag the backbone (port 1) and assigned ports 17-32 as untagged port of vlan 2.
- I created another vlan 3 and then tag the backbone (port 1) and assigned ports 33-48 as untagged port of vlan 3,
- Assigned the vlan interface ip 192.168.0.241(vlan1), 192.168.1.241/24(vlan2) and 192.168.2.241 (vlan3).
- I connected 2 computers to port 17 and port 18(vlan 2) set gw of pc to 192.168.1.241. I have no problem pinging PCs in same vlan. I can also ping 192.168.1.241 (vlan2's interface). I can ping the router (192.168.0.253).
- Then I connected a computer to port 35 (vlan 3) and set the default GW of the PC to 192.168.2.241. I tested the PC in Vlan1. It can't ping (which is fine, that's what I want), also no problem pinging 192.168.2.241 (vlan3's interface).
The Problem
- I cannot access to the Internet from vlan2 and vlan3.
- If I connect the computer to vlan1 (1,2,3,4), I can access Internet.
How can I solve these problems?
Details
HP v1910 IPv4 routing
HP v1910 Vlans
Linksys X1000 Routing table
Best Answer
NEW RESPONSE:
FIRST UNDERSTAND THESE TERMS:
HOW TO SETUP 2 VLANS:
Im assuming the switch here is strictly a Layer 2 switch. Meaning you cant set IPs on its VLANs so your cant have VLAN routing on it. If you have a Layer 3 switch which does support IPs on its VLANS, you can take away that functionality by not enabling "ip routing".
NOTE: without having that extra VLAN 99, internet communication will not be possible with a router that does not understand vlans. This is because traffic on the way back in will either have to be put on vlan 10 or 20, so that means half of your return traffic will not go the right way. Vlan 99 allows for return traffic to be distributed to all ports.
For more info check out link below.
OLD RESPONSE:
I have the exact article for you. This setup you want is possible with a switch and a router/gateway, which understands VLANS and one that Doesnt (you just need to create an extra internet vlan. The internet traffic will be shared unfortunately). Here is the link: http://ram.kossboss.com/netgear-vlans/
Netgear and HP handle vlans identically using their tag,untag,blank, and pvid notations. Cisco doesn't use those words but nonetheless the end result is the same. (For example a trunk port with Cisco is identical to a HP or NETGEAR switch tagging every vlan on a port. Pvid on trunk ports Doesn't matter as you will learn from the article). This article explains it all. And you will understand how to generally set this up. The only thing not covered is step by step UI instructions but as a tech that should be easy once you understand your objective and how to achieve it. First read past all of the updates then reread the article to make sure you understood.