Nebula AP in other management VLAN

nielsscheldeman

I'd like to move management interface from existing AP's in a isolated VLAN. So I created the VLAN11 and set Management VLAN ID to 11 and tagged in the Access Point at Nebula.

Everything fine, AP management moves the other VLAN, gets his IP. But now it seems that the SSID in the regular LAN isn't working anymore. Clients are getting 169.x.x.x IP. Guestwifi which is on another VLAN is still ok.

How to solve this? I don't want to set untag VLAN11 on switch in case the AP moves to other switchport.

PeterUK

Setup VLAN's that are tag for the SSID

nielsscheldeman

https://community.zyxel.com/en/discussion/comment/79046#Comment_79046

So you mean that I have to change LAN1 in my firewall to a VLAN?

edit: oh okay, If I set vlan1 tagged on switch on those ports it should work too, will test this

PeterUK

hmm yes that might work too or just don't use LAN1 untag and make new VLAN for the SSID you need.

nielsscheldeman

https://community.zyxel.com/en/discussion/comment/79048#Comment_79048

Yeah, but then I need to make bigger changes on firewall and also switches(4 XGS1930-52HP and 3 GS1900-8HP), because then it's not appriopriate to use VLAN ID 1 anymore.

Tested it on switch with VLAN1 tagged for the AP ports and works fine.

But are switches also affected if I change Management VLAN ID to 11? Because I want to migrate them too with minimal impact on company's productivity.

PeterUK

switches and AP can be independent what VLAN they are on so if you want Management stuff on VLAN 11 that is not a problem. 

nielsscheldeman

https://community.zyxel.com/en/discussion/comment/79051#Comment_79051

Yeah I meant if I change Management VLAN ID on switch to other then 1 if I would run into trouble with regular LAN1. But just did the test on a GS1900 and seems to be fine.

PeterUK

I would say no problem as long at the VLAN is ready for the change on the switch Management should be fine keep in mind the switch IP on DHCP or static when you make the change to be able to log in.