FW Gold replacing watchguard xtm25- networking newbie and access point issues
I have inherited the network maintenance responsibilities on the fly at our church. I am techie, but new to any network stuff other than basic home networks.
Original setup- cable modem into WatchGuard xtm25 with a single cable into a Cisco 24 port sg300 Managed switch and then we have 4 ubiquity access points through out the building. We have wired connections as well as Main wifi SSID on vlan2. We have Guest wifi network on vlan3. There is also a NetOps vlan5, that I am not sure what it does.
trying to drop FW Gold in for the end of life Watchguard xtm25.
I have setup the FW Gold in router mode. It automatically created a LAN, whose settings I did not change at all. I setup the WAN connection, and we have an internet connection. I created vlan2, and 3 mirroring the settings as best I knew how from the watchguard. On the FW app I see different numbers of devices listed on vlan2 and vlan3. We got Internet connection for devices on vlan2 and 3 once I changed the DNS on each of those vlans, but not sure if that is the right place to change DNS. Access points would not broadcast SSIDs until I created NetOps vlan5. Then they started broadcasting.
The Problem is, while you can connect to the wifi networks and internet through them, every few minutes, the wifi networks disappear for a minute or two, then come back. Kind of like they are rebooting or something. I checked a hardwired connection to the Cisco switch while this cutout was happening, and it acts totally normal as far as internet connectivity.
If I put the Watchguard back in, everything behaves fine. Any help would be greatly appreciated. And yes, it could certainly be something very basic that I am missing. You will not be insulting my intelligence!
-
Yes, one cable from FWG (and in original setup) to switch. All three vlans are set to that physical port on the FWG, and I assume on the switch, since the wiring hasn't changed from the switch. Haven't been able to access the switch and APs yet. Still trying to figure how to do that. I believe the management is setup on NetOps vlan5 as per what little documentation I have. Pardon my ignorance but what does that allow me to do with vlan5? Also, what is the correct what to have DNS setup with a setup like this?
-
Really it just provides more security with having it set up on VLAN 5 because then you have to be on VLAN 5 to access it. Mine (TP-Link) is just the default VLAN 1.
I would assume the dns is just your default lan ip address.
I have a FWG that has the main network (no VLAN or really default VLAN 1) and two different vlans (Guest and IoT). My APs are on my default lan and the main profile with 2 other profiles (tagged to the other two VLANs)
My guest dns is set at 8.8.8.8 and the IoT is the Firewalla DNS and my main lan is a dns server on my network.
-
This looks like the AP reboot themselves. Do you have any hard-wired devices, do they also fall off the network? Do you see any errors from the access point controllers?
Another thing you can check is turned off ad blocker / DoH, family mode and see if you still have issues. The Gold should be pretty transparent with access points.
Please sign in to leave a comment.
Comments
6 comments