1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

VLAN problem

Discussion in 'Tomato Firmware' started by xoy74, Jul 12, 2017.

  1. xoy74

    xoy74 Reformed Router Member

    I have a fiber internet connection going into a Tomato router (Shibby's variant).
    The setup is simple: fiber going into a media converter, and from there Ethernet into the WAN port of the Tomato router (Linksys EA6900). The ISP (Bell Canada) requires the WAN to be tagged on VLAN 35. The WAN connection is PPPoE. This router works as expected.
    I am trying to add a second router to the mix because I need two public IP addresses. The ISP allows 3 PPPoE sessions, so that's not an issue. The second router is a Linksys EA2500, also flashed with Shibby's build.
    One way to do this would be to add a switch between the media converter and the WAN ports of the two routers, but I am trying to avoid adding that. So I am trying to connect it to the main router through just one Ethernet cable, with both the WAN and the LAN going through it.
    So I tried to make one of the LAN ports on the main router part of both VLANs, and connect it to the WAN port of the second router which is also part of both VLANs. See the attached photo.
    I tried in one case to have both VLANs tagged (on both routers) and in another case to have the WAN VLAN tagged and the LAN one untagged.
    In both cases the LAN connection works (the routers can ping each other) but the WAN on the second router is not able to establish a PPPoE connections.
    Any idea what I am doing wrong ?
     

    Attached Files:

  2. btaroli

    btaroli Serious Server Member

    Question: Are the IP addresses you're using from the ISP on the same subnet? Are you enabling NAT on the first router? If yes, then I don't think there's a way to get this to do what you're attempting.

    You'd somehow need to get the LAN port on the same bridge as the WAN port.

    Maybe with MultiWAN? But I think it'll expect the second WAN to be connect to a port on the first router (from a modem or bridge CPE), not daisy chained to a second router...

    Maybe someone else has an idea, but I think you're needing a switch here.


    Sent from my iPhone using Tapatalk Pro
     
  3. xoy74

    xoy74 Reformed Router Member

    With my ISP, the WAN must be configured for PPPoE, so I am not assigning an IP address to them.
    The first router does NAT, but I am hoping that by enabling VLANs I can just carry both the WAN and LAN over the same Ethernet cable.
     
  4. tsanga

    tsanga Addicted to LI Member

    There have been a few of us on this forum who described an issue with combining tagged VLAN and untagged (default VLAN) traffic in the same port.

    This used to work for me on an older version of Tomato but no longer works. As soon as you tag one, the default untagged traffic is blocked.

    You may be experiencing the same issue. Sorry, nobody has a solution yet.


    Sent from my iPhone using Tapatalk
     
  5. osilo_

    osilo_ New Member Member

    Do you have another switch you can place in between to verify this setup? If not, you could turn off DHCP on one of the routers and use the LAN ports to verify your ISP. Test their work, just in case. Past that, I suspect it may be a firewall issue. I don't know how to help with that though. :( Tomato uses iptables
     
  6. Sean B.

    Sean B. LI Guru Member

    In shibby source, you could change line 1219 of file tomato-arm/release/src-rt-6.x.4708/linux/linux-2.6.36/config_base

    Code:
    -# CONFIG_MACVLAN is not set
    +CONFIG_MACVLAN=y
    And run a build. You could then add a virtual adapter with its own MAC address linked off your WAN interface

    Code:
    ip link add link eth0 wan2 type macvlan
    ifconfig wan2 hw ether aa:bb:cc:22:33:44
    Able to run a second PPPoE connection via the virtual adapter. A few additions to the routing table etc and done. Sense the new PPPoE link and its virtual adapter will obviously be placed on it's own bridge and vlan'd separately from your other link, if more ports are needed simply add only one of the LAN ports to the bridge for the new link and tie that port into a 4/8/10 etc port switch. Unless you need the full performance of both routers.
     

Share This Page