I have a simple network set up using two TP-Link Easy Smart switches: TL-SG1016DE and TL-SG1024DE. They are connected to each other using aggregated ports 1 and 2 on either end. There are numerous computers and other devices connected to each one.
The 16 port switch has a router connected to port 5. My router does NOT support VLANs.
I want to set up port 24 on the 24-port switch to have access only to the internet (through the router on the other switch). In this example, all other ports will have access to each other and the router on port 5.
Since I am going through two switches, I plan to use 802.1q tagging to set up the VLANs.
I know how to configure the ports, but I'm not really sure about PVIDs. I know that they are assigned to each port and are used to tag the untagged packets entering the port (which in my case will be all ports/packets except for the link between the two switches on ports 1 and 2). Those ports on either switch will be set to "tagged" and all others will be "untagged."
In order to allow port 24 on the 24-port switch to access only port 5 (the router port) on the 16-port switch, I can set port 24 to be on VLAN 200 and the router port to include VLAN 200 in the list of VLANs that it belongs to.
For all other general-use ports, I can put them in VLAN 100 and also include port 5, the router port. That way, anything connected to the other ports will be able to connect to the internet.
My question is about how to set the PVIDs. I can set the PVID of all of my general ports to 100. I can set the PVID for port 24 on the 24-port switch to 200.
But, what do I set the PVID on the router port (port 5 of the 16 port switch) to? If I set it to 200, does that mean that it will not be able to also communicate on VLAN 100? Are PVIDs only used for broadcast messages?
If I were on a single switch, I could use a port-based VLAN. But, since I'm crossing between two switches, I don't understand how the "other" switch would know where packets were allowed to go if they are only tagged for one of the VLANs.
The 16 port switch has a router connected to port 5. My router does NOT support VLANs.
I want to set up port 24 on the 24-port switch to have access only to the internet (through the router on the other switch). In this example, all other ports will have access to each other and the router on port 5.
Since I am going through two switches, I plan to use 802.1q tagging to set up the VLANs.
I know how to configure the ports, but I'm not really sure about PVIDs. I know that they are assigned to each port and are used to tag the untagged packets entering the port (which in my case will be all ports/packets except for the link between the two switches on ports 1 and 2). Those ports on either switch will be set to "tagged" and all others will be "untagged."
In order to allow port 24 on the 24-port switch to access only port 5 (the router port) on the 16-port switch, I can set port 24 to be on VLAN 200 and the router port to include VLAN 200 in the list of VLANs that it belongs to.
For all other general-use ports, I can put them in VLAN 100 and also include port 5, the router port. That way, anything connected to the other ports will be able to connect to the internet.
My question is about how to set the PVIDs. I can set the PVID of all of my general ports to 100. I can set the PVID for port 24 on the 24-port switch to 200.
But, what do I set the PVID on the router port (port 5 of the 16 port switch) to? If I set it to 200, does that mean that it will not be able to also communicate on VLAN 100? Are PVIDs only used for broadcast messages?
If I were on a single switch, I could use a port-based VLAN. But, since I'm crossing between two switches, I don't understand how the "other" switch would know where packets were allowed to go if they are only tagged for one of the VLANs.
