Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


Forums2degrees (including Slingshot, Orcon, Flip, Stuff Fibre, MyRepublic, 2talk and Vocus)2D Fibre and WAN Routed via VLAN. (Unifi)
Thanassos

4 posts

Wannabe Geek


#311615 1-Feb-2024 12:32
Send private message

Hi there, have recently moved property and signed up with 2d Fibre. (Moving from Orcon)

ONT was installed yesterday, everything went well - however my configuration which had previously worked now refuses to.

For various reason (Mostly aesthetics for the wife) I run the ONT into a Unifi 8 Port Switch that then connects to a UDM Pro.

 

VLAN 10 Network (VLAN Only/Third Party Network) created.

 

ONT is connected to Port 7 of the 8 port switch with:

 

VLAN 10 set as native on Port 7.
VLAN 10 Blocked on all other ports except Port 8.
Port 8 is Native Default LAN (1) + Allows VLAN 10.

Port 8 then connects to the UDM Pro Port 8. (Set to Native VLAN 1 + Allowing VLAN 10 - acting as a trunk)
Port 7 on the UDM is set to Native VLAN 10 and connected to WAN1 on the UDM.
VLAN 10 is blocked on all other ports on the UDM.

 

Essentially this creates a virtual cable/tunnel for the WAN Traffic to flow through into the Router. This setup worked on Orcon no worries.

 

With 2d however this doesn't appear to work - so I'm a little stumped. Is there something unique to 2d that would prevent such a set up working?

 

In the meantime I've moved the UDM Pro to where the ONT is located and it naturally works connected directly without any issues, however as expected I've already got the Wife asking when it'll be moved back into the network rack!

Thanks for any assistance!

Filter this topic showing only the reply marked as answer Create new topic
pchs
185 posts

Master Geek


  #3189264 1-Feb-2024 14:24
Send private message

I can confirm this should work, my UDM pro is about 4 switches downstream from my ONT with 2d ex Snap

I just gave both ports setup facing the ONT and UDM as custom vlan10 on a ‘default’ network, remember the ONT port is a ‘Vlan tagged’ port not just a native Vlan10 access port



richms
28168 posts

Uber Geek

Trusted
Lifetime subscriber

  #3189267 1-Feb-2024 14:31
Send private message

I did this before but with a draytek VSDL modem to get it to the location where the ONT was when it was the secondary connection into WAN2. I found it mostly worked but there were times when a switch was restarted and it would not come up till I unplugged and replugged the WAN2 on the USG that was where the vlan10 thru the internal switches was ending up at the other end.

 

Also what was said about it being a tagged vlan10 needs to happen.




Richard rich.ms

bagheera
539 posts

Ultimate Geek


  #3189271 1-Feb-2024 14:44
Send private message

I would create a vlan 2 native with vlan 10 tag group, set all "wan" side port to this group, and set all other ports to vlan 1 only.



pchs
185 posts

Master Geek


  #3189274 1-Feb-2024 14:51
Send private message

bagheera:

I would create a vlan 2 native with vlan 10 tag group, set all "wan" side port to this group, and set all other ports to vlan 1 only.



Agree! Actually reminds me I need to tidy up my config..

Thanassos

4 posts

Wannabe Geek


  #3189283 1-Feb-2024 15:07
Send private message

bagheera:

 

I would create a vlan 2 native with vlan 10 tag group, set all "wan" side port to this group, and set all other ports to vlan 1 only.

 



Thanks for jumping in!

 

Right, so create a second (VLAN Only?) network and make that the native VLAN + Tag 10. Something like:



 

 

 

Won't non-WAN Traffic (VLAN 1) then be blocked between two the switches? (Only have one cable to carry WAN and LAN thanks to house wiring).

I swear something is subtly off in this Unifi Interface since I last set it up. Or... I'm just getting old!

Cheers,

bagheera
539 posts

Ultimate Geek


  #3189286 1-Feb-2024 15:15
Send private message

if it is only one cable, then create vlan 1, vlan 10, vlan 20, on this trunk all vlan, set all "lan" ports to vlan 20, this way, vlan 1 and 10 can be used for the wan, vlan 20 for all other traffic, (all trunk port should be set to 1 native, 10 & 20 tag allowed)

Thanassos

4 posts

Wannabe Geek


  #3189305 1-Feb-2024 15:53
Send private message

Been thinking of re-doing the network scheme and this will certainly be the kick to make it happen.

Will configure everything and give it a crack. Worth a shot.

Cheers,

 
 
 
 

Cloud spending continues to surge globally, but most organisations haven’t made the changes necessary to maximise the value and cost-efficiency benefits of their cloud investments. Download the whitepaper From Overspend to Advantage now.
Thanassos

4 posts

Wannabe Geek


  #3189553 2-Feb-2024 09:02
Send private message

bagheera:

 

if it is only one cable, then create vlan 1, vlan 10, vlan 20, on this trunk all vlan, set all "lan" ports to vlan 20, this way, vlan 1 and 10 can be used for the wan, vlan 20 for all other traffic, (all trunk port should be set to 1 native, 10 & 20 tag allowed)

 

 

Went through and finally setup different VLANs for Wifi/Cameras/Servers/Devices/Management along with the Tunnel for 10.

 

All worked out perfectly. Thanks for your assistance.

 

 

 

The specific issue I was having which I just wasn't picking up however was previously in the Unifi Interface you would Create the VLAN Only network - then apply that as a "port profile" which Tagged that network.

 

In the new UI configuration has to be done differently, instead you create the VLAN then leave the ports native VLAN on default or whatever you change it to - then tag just the WAN VLAN. I was, as per the above snips creating the VLAN and then making that the native which duh as mentioned above create an access port instead.

 

Thanks all.

Filter this topic showing only the reply marked as answer Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00

eero Pro 7 Review
Posted 23-Jul-2025 12:07

BeeStation Plus Review
Posted 21-Jul-2025 14:21

eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01

WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32

RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26

Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24

Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05

Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01

Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01

Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22

Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46

Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42

D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34

Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







RSS feeds
Main feed
Forums feed
Copyright
©2002-2025 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Affiliate links
Samsung
AliExpress
Wise
Sharesies
GoodSync
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright