Firwewall Gold Netgear RAXE 300

Comments

6 comments

  • Avatar
    David Rothenberger

    FWG does allow each of the three LAN ports to be a separate network, but if your access point doesn't support VLAN tagging, you will have to put that APs clients into one network (the one associated with the port to which the AP is connected).

    APs and switches with VLAN support aren't that expensive, and they will provide the most flexibility, if you can swing them.

    0
    Comment actions Permalink
  • Avatar
    Mark Khan

    David thank you so much for your response! Based on the information you provided you are correct I am simply going to turn my RAXE 300 router into an access point connected via ethernet to the firewalla gold. Once I do that, can I then separate the wireless clients into 3 separate VLANs or networks without having other physical AP devices? 

    IE: IoT = 192.9.100.x, Home LAN = 192.9.101.x Guest LAN = 192.9.102.x 

    Your response will be greatly appreciated!

    Best regards Mark K.

    0
    Comment actions Permalink
  • Avatar
    David Rothenberger

    If you want to run multiple VLANs on the same AP, the AP must support VLAN tagging. That is, each SSID advertised by the AP is associated with a VLAN, and the AP tags the traffic accordingly. Since you stated that your AP does not support this, you would need to either buy a new AP that supports VLAN tagging or buy a separate AP for each VLAN. I would strongly recommend the first option.

    If you decide to buy an AP that supports VLAN tagging, you might also want to consider getting a managed switch that also supports VLAN tagging, and preferably also LACP (802.3ad) LAGs. This will allow you to put different wired clients into different VLANs, and the LACP support would allow you to connect your switch to your FWG with up to three separate cables, increasing the total bandwidth to 3Gbps (with some limitations).

    You don't need a switch that supports VLANs, since the FWG does allow you to associate each of its ports with a separate network/VLAN. However, without a switch, that would only leave you two ports for wired clients, since one ports will be used for WAN and one for your AP.

    0
    Comment actions Permalink
  • Avatar
    Mark Khan

    Again much gratitude! So basically my RAXE 300 router is useless. That's OK. with your experience do you have any recommendations on reliable AP that can support and approximately 50 clients in a 3000 SQFT area that also supports VLANs?

    Best regards!

    0
    Comment actions Permalink
  • Avatar
    David Rothenberger

    Personally, I have a TP-Link managed switch and Unifi APs. I have a 1500 sqft rambler and need two Unifi APs to cover it, and it's only barely covered. I don't think you'll be able to get away with just one AP for 3000 sqft.

    Others around here have recommended TP Link Omada or Aruba Instant On as well, for both APs and switches.

    I've had decent experience with Unifi, but their user forum is full of people with various problems. Maybe that's because only people with problems post on the forum, but if I were building from scratch, I'd seriously consider the TP Link or Aruba solutions before diving in to the Unifi ecosystem again.

    0
    Comment actions Permalink
  • Avatar
    Mark Khan

    Again thank you so much! You just save me many hours of tribulation over how to move forward. Take care and have a great weekend!
    Best regards Mark K.

    0
    Comment actions Permalink

Please sign in to leave a comment.