Netgear UTM10 Application Note: Deploy a ProSecure UTM in a Multi SSID Multi V - Page 1

Netgear UTM10 - ProSecure Unified Threat Management Appliance Manual

Get Netgear UTM10 - ProSecure Unified Threat Management Appliance PDF manuals and user guides
UPC - 606449061666
View all Netgear UTM10 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 1 highlights

UTM (Unified Threat Management) in a multi-SSID multi-VLAN network with traffic separation This document describes the steps to undertake in configuring a UTM 10 (Firmware version 1.0.16-0) and a WNDAP330 (Firmware version 3.0.3) to host a multi-SSID and multi-VLAN network. The solution will allow separating the Wireless traffic and Wired traffic of each of the VLANs configured, from any other VLAN which will exist on the Wired or Wireless LAN - maintaining same VLAN communication. The diagram below shows a typical scenario. UTM 10 Configuration LAN IP 192.168.1.1 VLAN1 (Corporate - default) IP 192.168.1.1 Membership: Port 1, 2, 3, 4 DHCP enabled 192.168.1.x/24 VLAN20 (Guest1) IP 192.168.20.1 Membership: Port 1 DHCP enabled 192.168.20.x/24 VLAN30 (Engineering) IP 192.168.30.1 Membership: Port 1 DHCP enabled 192.168.30.x/24 UTM Port 1 to AP LAN Internet Corporate AP configuration (WNDAP330) LAN IP 192.168.1.235 Untagged VLAN: 1 - Management VLAN: 1 SSID Corporate - VLAN 1(ID 1) SSID Guest - VLAN 20 (ID 20) SSID Engineering - VLAN30 (ID 30) UTM Port 2 to Switch 0/1 Guest Engineering Layer 2/ Layer 3 switch configuration LAN IP 192.168.1.239 Management VLAN: 1 Membership : all ports Untagged in VLAN1 Wired LAN 192.168.1.x/24 Version 2.0

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
Version 2.0
UTM (Unified Threat Management) in a multi-SSID multi-VLAN network with
traffic separation
This document describes the steps to undertake in configuring a UTM 10 (Firmware version
1.0.16-0) and a WNDAP330 (Firmware version 3.0.3) to host a multi-SSID and multi-VLAN
network.
The solution will allow separating the Wireless traffic and Wired traffic of each of the VLANs
configured, from any other VLAN which will exist on the Wired or Wireless LAN
maintaining
same VLAN communication.
The diagram below shows a typical scenario.
AP configuration (WNDAP330)
LAN IP
192.168.1.235
Untagged VLAN: 1
Management VLAN: 1
SSID Corporate
VLAN 1(ID 1)
SSID Guest
VLAN 20 (ID 20)
SSID Engineering
VLAN30 (ID 30)
Corporate
Guest
Engineering
UTM Port 1 to AP LAN
UTM 10 Configuration
LAN IP
192.168.1.1
VLAN1
(Corporate - default)
IP 192.168.1.1
Membership: Port 1, 2, 3, 4
DHCP enabled 192.168.1.x/24
VLAN20
(Guest1)
IP 192.168.20.1
Membership: Port 1
DHCP enabled 192.168.20.x/24
VLAN30
(Engineering)
IP 192.168.30.1
Membership: Port 1
DHCP enabled 192.168.30.x/24
UTM Port 2 to Switch 0/1
Internet
Wired LAN 192.168.1.x/24
Layer 2/ Layer 3 switch configuration
LAN IP
192.168.1.239
Management VLAN: 1
Membership : all ports Untagged in
VLAN1