Why am I able to connect between different VLANs ???

Discussion in 'Sveasoft Firmware' started by dau, Jan 13, 2005.

  1. dau

    dau Guest

    I´m set up two VLANs ... one vlan (vlan1) for my "w" (wireless) and another vlan (vlan0) for port 1-4 on the wired side.
    Why am I still able to connect between these two VLANs without any problem?
    Is this function in the current firmware still not working properly???
  2. Toxic

    Toxic Administrator Staff Member

    Satori will be old news soon. just wait until Alchemy 6.0 FINAL is released to public. this should be able to fix your probem (I hope)

    release dates are unknown but alot of work is going on to get this released soon.

    be patient.
  3. hidden

    hidden Network Guru Member

    Almost there :)
    but i hope the don't wait to long because i am losing interest this way.
  4. lonewolf

    lonewolf Network Guru Member

    Uh, if you're refering to the VLAN page in Alchemy, port 'W' is not wireless (wireless is not on a VLAN).

  5. Toxic

    Toxic Administrator Staff Member

    well how about sveasoft releases it now for you. then you all complain like mad about the bugs within the firmware, would that be sensible now would it.

    either you wait for Alchemy or you simply dont:) surely this alchemy is not the highlight of your life is it?
  6. jotne

    jotne Network Guru Member

    After reading trough several post in this forum, it can look like for someone that Linksys WRT54G is THE highlight of their life :D
  7. Gheimposse

    Gheimposse Network Guru Member

    So ... may anyone send me the HOWTO for the vlan menu so that I know how to setup the vlans and what the "w" stands for??? *thx*

    However I´m trying to manage the vlan thing by setting up strict rules via iptable rules to the firewall using fwbuilder.

    But ... I still would be please having the HOWTOs. *thx,thx,thx,...*
  8. jotne

    jotne Network Guru Member

    My guess is that "w" in the vlan menu stands for wan (wide area network).
    Wan is normal referred to as Internet and Lan (local area network) as the inside network.
  9. Gheimposse

    Gheimposse Network Guru Member

    But for which reason (if "w" stands for WAN) is this in the vlan menu???
    And can anyone support me with the howto for Sveasofts vlan menu?
    And can anyone (other) support me with the startup script for vlan?
  10. hidden

    hidden Network Guru Member

    Maby highlight of wifi ;)
  11. Gheimposse

    Gheimposse Network Guru Member

    Ok ... can me PLEASE now anyone send me the manual for the vlan menu in the Sveasoft firmware so that I really know which stands for what??? *thx*
  12. jotne

    jotne Network Guru Member

    Why do you need Vlan support? Do you intend to setup several separate internal network?
  13. Gheimposse

    Gheimposse Network Guru Member

    Yes I intend to do this cause I´ll leave my actual appartment in february and than living in "my own house" which is the 1st floor in a standalone house.
    My hirer will live in the basement and I´ll share the dsl with him but wont share my privat network with him.

    The first wrt54gs will be in his appartment managing his own lan/wlan having one port for uplink for a wired connection to the 2nd floor for me.
    So this router needs to have vlan cause one port will be my vlan and the other three ones will be his vlan.
    In my appartment there´ll be another wrt54gs managing my lan.
    So vlan is a must for the first router standing at the modem in the appartment of my hirer.
  14. jotne

    jotne Network Guru Member

    You do not need vlan support to solve this. Here is how it can be done if you have two wrt54g:


    You are then able to see his PC, but he can not se you :)
  15. Gheimposse

    Gheimposse Network Guru Member

    Ok ... thanks ... but the trick would be that I´m also not able to see his one. That the other way around is clear cause of the firewalll on the secon wrt saves me but not him ... and I can understand that he as well as me wants to have some privacy, isn´t it?

    So ... can anyone support me with the manual for the vlan?
  16. jotne

    jotne Network Guru Member

    Install SP2 and turn on Firewall.
    It's not that easy to se what other is doing if you do not have access to their computers.

    I have worked with VLAN for several years, but I am not able to understand how to use it in the VLAN in the Linksys.

    If the VLAN do work as a divider for the firewall you should be able to set up 3 network. One on the outside as normal and two on the inside ( and Both of them should then have access to internet and not been able to talk to each oter.

    You should then be able to solve your problem with one Linksys.

    I am not sure what to do with the WLAN. It seems that it have to connect to one of the VLAN. If you are using a Cisco Access Point you are able to set up different SSID with up to 16 VLAN, so the same box is used to several networks.
  17. Gheimposse

    Gheimposse Network Guru Member

    Using the firewall in sp2??? You´re kidding, isn´t???
    That´s not a firewall at all ... that´s just a joke I´ve to say.
    Nothing for me ... all my pcs has @guard installed.*best u can get*

    But returning to the vlan problem itself.
    I found some helpful links regarding vlan ... but I still have to read them in detail:



    There you´ll find some explanations how to hack the linksys via telnet/ssh.
  18. jotne

    jotne Network Guru Member

    SP2 firewall isn't that bad.
    1 It's free
    2 It's easy to set up
    3 It's better than nothing

    Do you have a guide on how to hack into a computer running sp2 firewall?
    Create yourself and admin account and enable RDP?

    Regarding the VLAN, I did understood what they have done, but my question is then how to do it from the GUI (VLAN menu)?
  19. Gheimposse

    Gheimposse Network Guru Member

    The firewall in the sp2 from microsoft is just a joke.
    Maybe it something like "working" for incoming traffic but it doesn´t manage outbound (i.e. "talking to Microsoft" applications) as well as incoming cookies, activex, java, pop-ups, etc.
    Do yourself a pleasure and take a firewall and not the sp2 one.

    The vlan menu in the Sveasoft firmware is essential for me to ensure that you´ve your own network.
    Ok ... in a way you may manage this by setting routes ... but this only manage ip-address ranges ... but a vlan will manage the traffic on an ethernet port without beeing interested which ip-address you´re using at the moment.
    So that´s really a virtual local area network (vlan).

    So ... I still got no answer regarding the howto from the vlan menu from sveasoft. Can anyone support me with this???
  20. gokkio

    gokkio Network Guru Member

    I would also like to know how to setup the VLAN.
    What on earth are the TRUNK option?
  21. Disman_ca

    Disman_ca Super Moderator Staff Member Member

    Gheimposse/gokkio, I believe this should solve your question.

    ON the http://your_router_ip/Vlan.asp page do the following to isolate your wirless from you wired LAN.[hr:d15f58e87b]VLAN0 clear all check boxes and change assigned to bridge "NONE"
    VLAN1 leave it as is
    VLAN2 check all ports (1 to 4) and change assigned to bridge "LAN"
    [hr:d15f58e87b]VLAN0 is assigned to the wireless interface, VLAN1 is assigned to the Internet interface (hard coded). By setting VLAN0 to NONE tells the router not to bridge it accross the other ethernet ports (internal network). You might want to enable tagging on all ports if you to want sniff or scan your network. It adds a header field on ethernet frames so you will be able to tell what vlan the packet came from.

    BTW, I didn't test this so I can't guarantee it 100% but I believe it is the correct config to answer your question.
  22. gokkio

    gokkio Network Guru Member

    I am using the latest Alchemy v1.0.
    The VLAN option are either bridge or none.
    How or where do i set the IP scope for the VLAN?
  23. Disman_ca

    Disman_ca Super Moderator Staff Member Member

    Sorry then use bridge in place of where I said LAN. As for dhcp, so long as you dhcp serice is running it should service all VLANS I believe. If you are asking for a seperate dhcp scope that might be tricky to do. However you might be able to use the dnsmasqd dhcpd option by enabling it and setting the interface to offer the seperate scope on.
  24. gokkio

    gokkio Network Guru Member

    You are right it is a tricky thing with different scopes for the VLAN´s.
    I guess i have to do with the ordinary options in the firmware for now.
    Thanks for your reply.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice