in
Questions and answers to issues related to Hardware: Apple, Components, Monitors, Handhelds, Laptops, motherboard, Networking, Storage. » Networking Hardware » Switches » Setting up multi-tenant Vlans

Setting up multi-tenant Vlans

I am new to VLANS and have been unable to find good documentation anywhere that explains how to do what I want.

I want to be able to provide internet to separate tenants giving them 1 or 2 ports of the router.  with this I want them to be able to access A. the internet B. A DHCP server but not be able to access other tenants VLANS?

So this is my setup
port - 25 = line from my DHCP server / firewall serving 192.168.8.0/255.255.255.0
port - 1   = Tenant A
port - 2-4 = Tenant B

So I want both tenants to either A. get an IP from the DHCP server on port 24 or B. have the switch give it an IP so I can give the tenant A an network like 10.1.0.0/255.255.255.0 <-- ideal  then both tenants need to be able to get on the internet via port 24 but not be able to access each other.

I'm sorry but I'm a grand newbie with vlans.

I know how to create the VLANS via the web gui, but do not know how to make them interact and I don't know what tagged vs untagged means.

Any help would be appreciated.

Thanks!
Movie Stars

Solution: Setting up multi-tenant Vlans

ACL is Access Control List. It is under the 'Security' option of the Netgear management UI.

What you do is create ACL rules (IP Extended, under Advanced of the ACL section) which either permits or denys traffic. In this case say we have subnets 10.0.1.0/24 and 10.0.2.0/24 and 192.168.1.0/24. We would create an ACL for the ports on subnet #1 which would be permit 10.0.1.0 255.255.255.0 destination 192.168.1.0/24 then another rule after that of deny any/any.

Do the VLANs like your second method, assuming that port 25 is the link to the router. This requires that your router support VLAN'ing. If it doesn't we may need to do layer 3 segmenting.

Popular Tags

Browse All Tags