What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Using a wifi channel for a separate vlan with Merlin and IPV6

P

PabloAbonia

Regular Contributor
I have several Nest devices that have the unfortunate underpinning design that interferes with IPV6 router advertisements. As designed these devices broadcast their router advertisements across whatever lan they are hooked up to. These advertisements set M flag = 0, O flag = 0, which is a problem if you are trying to setup your IPV6 network to anything but SLAAC.

For my router In RA-stateless mode M flag = 0, O flag = 1, this is not as much of a problem, as I am able to dole out a DNS address. Windows 7 complains in the event viewer, but the IPV6 address remains unchanged. It also obtains a non-routeable ULA address (fdbe::) from the Nest Protect RA messages, again not much of an issue. Save for the repeated log messages, this is only a nuisance.

However, the moment a managed address is attempted (M flag = 1, O flag = 1), all havoc breaks loose. The moment a device previously assigned IPV6 address receives a RA message from the Nest devices (M flag = 0, O flag = 0), it drops the assigned address, and can no longer be found by its assigned host name or address, until the router's RA a received again. This leads to disconnection of network drives, HomeGroups, etc. Right now all of my devices are on a AP that is separate from my router. It also impacts the performance of Apple devices

As I have not been using my router as a wifi device, I was hoping to use its wifi capabilities and place these Nest devices in a separate vlan and not expose the rest of my LAN to these invalid RA messages.

The router is a RT-AC56U. I need to know how to subnet under the IPV6 PD received from the ISP, as well as an IPV4 subnet.

Advice regarding this would be greatly appreciated.

Pablo


--
Pablo
 
SOLVED.

I placed the offending Nest devices on a Guest network, isolating their router advertisements to themselves and the router, based upon another post I saw here.

I have also noted that while the Asus Merlin access point mode 376.49 allows for the creation of a guest network, but provides complete access to the entirety of the network.

Unless there is a means of isolating the guest network on the AP to the router, it's use does not make sense. Is there a means of providing a vlan for the guest network AP to the router?

Thanks,




--
Pablo
 
PabloAbonia said:
SOLVED.

I placed the offending Nest devices on a Guest network, isolating their router advertisements to themselves and the router, based upon another post I saw here.

I have also noted that while the Asus Merlin access point mode 376.49 allows for the creation of a guest network, but provides complete access to the entirety of the network.

Unless there is a means of isolating the guest network on the AP to the router, it's use does not make sense. Is there a means of providing a vlan for the guest network AP to the router?
Click to expand...

Access Point does not support isolating from the rest of the network because it's just an access point, with no control over the rest of your network. You need a router to do that.
 
That's what I figured and In that context, you may wish to remove the guest network capability in access point mode.

I would suggest this as it provides complete access and makes any security placed on the main SSIDs pointless while in AP mode.

Pablo


--
Pablo
 
You must log in or register to reply here.

Similar threads

B
Undervolting AsusWRT/Merlin Wifi (A Brief Guide)
Replies
2
Views
540
Boji
B
M
IPv6 and Router Advertisement adding route to delegated /56 via WAN interface
Replies
2
Views
1K
ZebMcKayhan
Z
J
No IPv6 with GT-AX11000 Pro - ISP dual stack Spectrum San Diego
2
Replies
36
Views
512
josephwit
J
J
Guest Network Pro on RT-AX88U Pro IoT VLAN Setup with TP-Link TL-SG1008 Unmanaged Switch
Replies
8
Views
1K
jerry6
jerry6
J
Client List on RT-AX88U Pro incorrectly showing a VLAN Device on the Primary Network; incorrectly showing Static device as DHCP
2
Replies
21
Views
775
RMerlin
RMerlin
Similar threads
Thread starter Title Forum Replies Date
Ripshod What's using cache? Asuswrt-Merlin 11
FernandoF Guest Network Pro using the same subnet - Replicating behavior from previous firmware Asuswrt-Merlin 6
R IPv6 on GNP using Passthrough Asuswrt-Merlin 8
128bit what's the current guidance with using merlinwrt 3006 on mesh nodes? Asuswrt-Merlin 10
M Problems login in to Asus RT-BE86U using Linux Mint Asuswrt-Merlin 4
XIII Setting up IoT networks using 3006 firmware? Asuswrt-Merlin 8
TheLyppardMan Problem with Wi-Fi using new RT-AX86U Pro router Asuswrt-Merlin 18
J Experience using PIA Wireguard on your router (ASUSWRT-MERLIN) Asuswrt-Merlin 4
RMerlin Even when not using MLO, it still changes some stuff Asuswrt-Merlin 0
R VPN Client and Server using Trust.Zone public IP and port forwarding Asuswrt-Merlin 2

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 827 (members: 29, guests: 798)
Back
Top