Firwewall Gold Netgear RAXE 300
Sorry to keep asking questions, but I can't seem to find any documentation on my particular network configuration. The RAXE 300 does not support VLAN tagging. If I use a firewalla gold router and configure and connect my netgear RAXE 300 as an access point to the firewall and gold router. Will I still be able to create three separate networks on the firewalla of gold router?
FWG does allow each of the three LAN ports to be a separate network, but if your access point doesn't support VLAN tagging, you will have to put that APs clients into one network (the one associated with the port to which the AP is connected).
APs and switches with VLAN support aren't that expensive, and they will provide the most flexibility, if you can swing them.
David thank you so much for your response! Based on the information you provided you are correct I am simply going to turn my RAXE 300 router into an access point connected via ethernet to the firewalla gold. Once I do that, can I then separate the wireless clients into 3 separate VLANs or networks without having other physical AP devices?
IE: IoT = 192.9.100.x, Home LAN = 192.9.101.x Guest LAN = 192.9.102.x
Your response will be greatly appreciated!
Best regards Mark K.
If you want to run multiple VLANs on the same AP, the AP must support VLAN tagging. That is, each SSID advertised by the AP is associated with a VLAN, and the AP tags the traffic accordingly. Since you stated that your AP does not support this, you would need to either buy a new AP that supports VLAN tagging or buy a separate AP for each VLAN. I would strongly recommend the first option.
If you decide to buy an AP that supports VLAN tagging, you might also want to consider getting a managed switch that also supports VLAN tagging, and preferably also LACP (802.3ad) LAGs. This will allow you to put different wired clients into different VLANs, and the LACP support would allow you to connect your switch to your FWG with up to three separate cables, increasing the total bandwidth to 3Gbps (with some limitations).
You don't need a switch that supports VLANs, since the FWG does allow you to associate each of its ports with a separate network/VLAN. However, without a switch, that would only leave you two ports for wired clients, since one ports will be used for WAN and one for your AP.
Personally, I have a TP-Link managed switch and Unifi APs. I have a 1500 sqft rambler and need two Unifi APs to cover it, and it's only barely covered. I don't think you'll be able to get away with just one AP for 3000 sqft.
Others around here have recommended TP Link Omada or Aruba Instant On as well, for both APs and switches.
I've had decent experience with Unifi, but their user forum is full of people with various problems. Maybe that's because only people with problems post on the forum, but if I were building from scratch, I'd seriously consider the TP Link or Aruba solutions before diving in to the Unifi ecosystem again.
Please sign in to leave a comment.