SD-SWITCHES: Management LAN concept: VLAN ID = 1 <> untagged LAN

Product Discussion Other Products
1

Dear forum,

I really do not understand the VLAN concept Peplink has introduced for management LAN on the new SD SWITCHES in comparison to the routers (e.g. balance one/two). Maybe you can help me with an explanation?

  1. Why do the SD SWITCHEs only have a VLAN1 (ID=1) and not an untagged LAN (ID= NONE (=0))?

  2. Why can’t I add the SWITCHES in Incontrol2 to the untagged LAN of the routers? But can add the routers to the SD SWITCH Management LAN (VLAN1)?

  3. Should I add the routers to the VLAN1 of the SWITCHES? What would happen, if I would do so? What, if I would remove the untagged LAN (ID=0) assignment to the routers afterwards?

Some screenshots toi explain further details:

6-ac-1-cee-8-18-a-7-4-a-22-aa-40-6-f-01-cba-503-ae.jpeg
6-ac-1-cee-8-18-a-7-4-a-22-aa-40-6-f-01-cba-503-ae.jpeg2532×668 129 KB

3-c-3152-ae-31-b-0-448-b-bc-5-c-3-c-5989-a-17998.png
3-c-3152-ae-31-b-0-448-b-bc-5-c-3-c-5989-a-17998.png2532×1170 192 KB

3-ea-5-a-782-7237-4-fcc-9968-574197-f-5-ba-17.png
3-ea-5-a-782-7237-4-fcc-9968-574197-f-5-ba-17.png2532×1170 183 KB

Any help will be very much appreciated. Thanks in advance!

2

Noone having any idea? :pensive:

3

ive had this question for years,

Im absolutely dumbfounded about this, it makes no sense and causes all sorts of trouble, fortigates just do not like vlan 1 as untagged and drop all traffic.

Not to mention some netgear switches come preconfigured with vlans 1-10 being unable to be changed or modified, this just breaks the whole thing.

the only solution ive found is to use a small managed cisco switch, then have that bridge vlan 1 and untagged, and that solved my connection problems with fortigates and other hardware but i mean cmon guys , this shouldn’t even be a thing.

1 Like
4

I agree that this is confusingly done, and looks odd in IC2 with the seperate balance vs SD-SWITCH options.

2 Likes