Unifi AP and two vlan'a — how to implement?

Good time, the essence of the question - there are a couple of points unifi ap running the dev with their software, when one network, one SSID, everything is fine, but when there is a desire at one point to make a different network (SSID), then start some rake on the two switches do vlan'a single one that is default (aka driven), the second from another network, so when setting up a port trunk and add a back label with ID vlan'a nothing works, as soon as I put the access port in one vlan (the one for point control) all help to win, where blunt?

Read off the docks, mistakes are not seen.
Thank you
September 26th 19 at 07:16
5 answers
September 26th 19 at 07:18
Solution
Good day!
Until I added vlan 10, where the controller points, as a native I also did not work.

Here is the config port (cisco cat 2960), which point is connected
interface FastEthernet0/40
description "Access Point"
switchport trunk native vlan 10
switchport mode trunk
spanning-tree portfast
if I'm not mistaken HP is the PVID ?
and then you add the rest alloved vlan ? - Myrtis.Russ commented on September 26th 19 at 07:21
If you do not explicitly specify the command switchport trunk allowed vlan add X,Y,X, then on most Cisco switches, the default is switchport trunk allowed vlan all, i.e. allowed through this trunk all VLANs.
Of course it is better to explicitly specify only those VLANs that will actually be used on this port. - Mina.Fahey commented on September 26th 19 at 07:24
I read the description from HP. Yes, it seems PVID is the same. - clyde_Emard72 commented on September 26th 19 at 07:27
Yeah, at first I specified the allowed vlan, but does not work. On the weekend I want to try nesokolko tests, I think it should work. - clyde_Emard72 commented on September 26th 19 at 07:30
This manual saw? wiki.ubnt.com/UniFi_and_switch_VLAN_configuration - clyde_Emard72 commented on September 26th 19 at 07:33
September 26th 19 at 07:20
Solution
manage vlan should go to the point of untag, the client vlan (vlanid those which are you in a controller) ratio. tag
from different vendors or native or pvid
wiki.ubnt.com/UniFi_and_switch_VLAN_configuration#...
September 26th 19 at 07:22
And in the dev trunk made?
Of course, - Myrtis.Russ commented on September 26th 19 at 07:25
What switch? Give port settings.
Management did Native Vlan on the port? - Mina.Fahey commented on September 26th 19 at 07:28
HP 1910-48 Switch JG540A data pieces of iron recently work has previously worked with cat2960 if you can on your toes because HP is not so in the cisco - clyde_Emard72 commented on September 26th 19 at 07:31
In the terminology of HP native vlan is the untagged vlan.
In the settings that the VLAN that you specify the untagged management <port numbers separated by commas where inserted points>. Something like this:
sw1(config)# vlan 10
sw1(vlan-2)# name Management
sw1(vlan-2)# untagged 1,2
The remaining VLANs set up already with the command 'tagged' for these ports.
On the controller, respectively, in the WiFi settings network specify the VLAN ID.

PS I Recommend the next time you describe the problem, directly specify the model switches, the hypervisor, configure the ports, etc. - clyde_Emard72 commented on September 26th 19 at 07:34
so it is not clear why untagged and not just trunk allowed clan ? - clyde_Emard72 commented on September 26th 19 at 07:37
So arranged the point Unifi. Traffic control points may not be legirovaniem. Dot believes that everything came from tag for wireless networks, and in traffic without a tag - team management.
To literally quote, here is a description of how Native(Untagged) Vlan:
xgu.ru/wiki/Native_VLAN
And the picture from the website Unifi, with how things should be arranged, if you need multiple VLANs:
wiki.ubnt.com/File:UniFi_SW_VLAN_Network_Diagram.jpg - Myrtis.Russ commented on September 26th 19 at 07:40
how about, since it is already more clear, ie subject to the condition that the port to untagged, and it piled up for example 2 marks should all be worked up ? Right? - Mina.Fahey commented on September 26th 19 at 07:43
Here some confusion in the terminology of various vendors.
The port through which traffic can pass multiple VLANs is called a Trunk from Cisco and HP, it is called Tagged, i.e. legirovaniem.
The VLAN whose traffic is not marked mark when passing through tagged port, Cisco has called the Native VLAN, but HP - Untagged VLAN.
Ie, in your case, since you have HP, the port will legirovaniem, but the Management VLAN neteherlands.
On the website Unifi by the way is the same manual for all the switches, in particular
wiki.ubnt.com/UniFi_and_switch_VLAN_configuration#...
Special attention to paragraphs 7-9.
It is only the switch settings for points, whether you have configured network for new path I don't know. So going to start or not can not say, try. - Myrtis.Russ commented on September 26th 19 at 07:46
the brain perceives the HP is bad policy do I understand,
Untagged Membership vlan12 (the control network points) Tagged vlan Membership 6 (already network what you want right ?) - Mina.Fahey commented on September 26th 19 at 07:49
I think Yes, very easy to check: set up the port, is inserted into a normal computer/laptop. If you are in VLAN 12 DHCP, if successful, will get the address from that VLAN. If no DHCP, set the address of this VLAN and try to pinganut someone else from the same network pinged - all is configured correctly. This happens due to the fact that Windows does not perceive tigerbunny traffic without special.drivers and neteherlands traffic to his standard, the usual. - Myrtis.Russ commented on September 26th 19 at 07:52
September 26th 19 at 07:24
It is necessary to look brctl. By default, these points are interfaces in the bridge. Need poudalyat main interfaces and add to the bridge the eth1 interfaces of the species.100, eth1.200
Little more is possible ? - Myrtis.Russ commented on September 26th 19 at 07:27
And what's more? First, set up through the web about how you need to, then go in via telnet/ssh, look through brctl which interfaces are in the main bridge, and remove what is not necessary, create vlana via command line, add the necessary interfaces to the main bridge via brctl and the same write need of ranting.
I have now at hand is not present unifi to set it what you need. But the General procedure is as follows. - Mina.Fahey commented on September 26th 19 at 07:30
hmm, tomorrow will go through the point....see... - clyde_Emard72 commented on September 26th 19 at 07:33
September 26th 19 at 07:26
https://community.ubnt.com/t5/UniFi-Controller-Ins... leave just then, a vivid picture. (can someone come in handy)

Find more questions by tags Network administrationComputer networksUniFi