• Multiple Access Points With 802.1Q using OpenWRT(part2)

    Welcome back!

    In the last part, part 1, we configured our OpenWRT device, got it to emit two(2) Access Point SSIDs (insecureWiFi & secureWiFi), created two(2) VLANs to separate traffic frames, and created a trunk to our PoweConnect switch! Wow!
    For this part, part 2, we will be creating another VLAN Trunk from our Dell PowerConnect switch to our Linux router, designing and configuring some Firewall rules.
    [Read More…]

  • Multiple Access Points With 802.1Q using OpenWRT(part1)

    I set out on this home project with the intent of providing wireless internet to friends and family when visiting. I wanted to provide internet without allowing any malicious clients from consuming all my bandwidth and/or crippling my internal home network. There are many Wireless Access Points(WAP) that are capable of broadcasting multiple SSIDs. Cisco makes a few from their Aironet series, however they seem to be pretty expensive. I settled with a Netgear WNDR3700 after reading a few posts on hardforum.com that had success running OpenWRT.

    OpenWRT is an third-party firmware designed for consumer based Access Points, such as Netgear, Linksys, Dlink, etc. OpenWRT adds many additional features, including the two features I needed. Support for 802.1Q trunking and gives the ability to run multiple SSID wireless signals.

    Topology


    [Read More…]

  • Inter-VLAN routing with Linux & PowerConnect 5324

    I recently purchased a 24-port Gigabit Layer 2 Switch that supports VLAN tagging and trunking. Dell PowerConnect 5324, see here, has 24 Ethernet ports and is capable of tagging and untagging Frames at wire speed. It is a discontinued model, however doing some googling I found a updated firmware and IOS image!

    Physical Topology

    The topology is pretty typical of “routing-on-a-stick” for Multiple VLANs. I have a Linux server running Ubuntu 12.04 with a single NIC and the Dell PowerConnect switch.

    Port configuration:
    Network 1 = g1 – g16
    Network 2 = g17 -g23

    802.1q Information:
    Switch Trunk Port = g24
    Router Trunk Port = eth1

    Logical Topology

    I have a single LAN I want logically separated using a single switch. The VLAN IDs are 100 & 200. The VLAN subnets and ports will be as follows;

    Subnets:
    VLAN 100 = 192.168.1.1/24
    VLAN 200 = 192.168.2.1/24

    VLAN Access Ports:
    VLAN 100 = g1 – g16
    VLAN 200 = g17 -g23

    [Read More…]