Firewalla & TP Link Omada SG2428P
Hi there,
im having issues with a Firewalla Gold Plus and a TP Link Omada SG2428P
Heres an overview
FIREWALLA GOLD
Firewalla port 1 = "Management" on 192.168.5.1/24 Type LAN (when I change this tio vLAN with ID of 5 everything stops working?)
Firewalla port 2 = Trunk port with the following vLANs
IOT Stuff VLAN 15 192.168.15.1/24
Personal Devices VLAN 10 192.168.10.1/24
RasPis VLAN 20 192.168.20.1/24
Firewalla port 3 = Unused
Firewalla port 4 = WAN
ADDITIONAL NETWORK CONFIG:
All networks have these configured
IPv6 - off
mDNS Relay - Off
SSDP Relay - Off
Block ICMP - Off
RULES
Management
Block Traffic from & to All Local Networks
Allow Traffic from & to Internet (is this needed?)
Allow Traffic from & to Management (is this needed to communicate with the devices on the management network?)
IOT Stuff
Block Traffic from & to All Local Networks
Personal Devices
Block Traffic from & to All Local Networks
RasPis
Block Traffic from & to All Local Networks
CONNECTIONS
Firewalla port 1 connects to port 1 on Omada switch
Firewalla port 2 connects to port 9 on Omada switch
SG2428P
LAN Settings
The following are configured as networks:
IOT Stuff - Purpose: VLAN, VLAN: 15
LAN(Default) - Purpose: Interface, VLAN: 1, Gateway 192.168.0.1/24, DHCP enabled (ideally I'd like to remove this but not sure if that's feasible and whether it needs to be kept in place)
Management - Purpose: VLAN, VLAN: 5
Personal Devices - Purpose: VLAN, VLAN: 10
RasPis - Purpose: VLAN, VLAN: 20
PORT CONFIG
Ports 1 and 9 profile is configured to "All"
Access Points are connected on ports 3 and 4 and their profile is configured to "All"
The controller is connected to port 2 and its profile is configured to "All"
VLAN Interface
LAN (default) is enabled
All other VLANs are disabled (I assume this is correct as the Firewalla is managing DHCP?)
Wireless Networks
Each Firewalla network has its own Wireless network e.g "Management" has a WiFi network with an SSID of management set to the VLAN ID of 5
Management Group all on 192.168.5.*
SG2428P
2 x Access Point
1 x OC200 Controller
Issues I'd like to resolve
- I'd like to make the "Management" network the default on the switch - not sure if that is possible?
- I'm seeing some stuttering on Sky Stream that I didn't experience before putting the Firewalla and switch in place. What would be the steps to troubleshoot this?
- I hide SSID broadcasts and some devices are struggling with this I think. My wifes iPhone for example doesn't connect all the time and I've had issues with a PS5 connecting. Is there anything in the config causing this?
Thanks in advance for any help!
-
I managed to get this working
Here's a guide I wrote if it helps anyone else
https://diyit.ch/how-to-configure-a-firewalla-gold-plus-and-tp-link-sg2428p/
Please sign in to leave a comment.
Comments
2 comments