USG60W: lan1 not available in bridge available Interface

mMontana
mMontana Posts: 1,298  Guru Member
First Anniversary 10 Comments Friend Collector First Answer
edited September 2021 in Security
USG60W, firmware 4.65P1.
The user manual states:

As reported by GUI, no bridge has been configured (yet)


And... as far as my references says... there should be no virtual interface on top of it.

What I am missing?

All Replies

  • PeterUK
    PeterUK Posts: 2,656  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    edited September 2021

    Is LAN1 part of the AP setup?



  • mMontana
    mMontana Posts: 1,298  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    edited September 2021
    It was, for both SSIDs, now not anymore.
    But the vLANs for SSIDs disappeared from the available members.

    Goal: use vLAN 99 as "bridge" to LAN1.
    use vLAN 96 as guest vLAN.
    Both not showing on the bridge page.

    Both used on SSIDs of the Wireless management. As Local Bridge. That's the "locking" setup?
  • PeterUK
    PeterUK Posts: 2,656  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    edited September 2021

    You likely don't need a bridge so like for VLAN 96 as guest you set in SSID forwarding mode loacl bridge and VLAN ID 96 with VLAN support on


  • mMontana
    mMontana Posts: 1,298  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    IMVHO i should... i mean...

    Internal USG60W AP and a NWA5123-AC should share the same set of SSIds.
    The "internal" SSID should lay on LAN1/lan1 (segment, network) as bridged.
    The "guest" SSID should be considered guest. But feed via the same cable to NWA5123-AC.

    In my mind i was feeding both vLANS on the LAN port, but the firewall should "connect" vLAN99 on lan1...

    Thanking you for your time and experience, i'm also open to suggestions.
  • PeterUK
    PeterUK Posts: 2,656  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    edited September 2021

    I have a USG60W and WAX510D and can get the guest SSID on both without a bridge you just setup VLAN with zone name In my case for guest base port LAN1 zone VLAN4902 192.168.250.1 255.255.254.0

    SSID forwarding mode local bridge and VLAN ID 4902 with VLAN support on then set for each USG60W and WAX510D Group setting with that guest SSID

    routeing from VLAN zone to WAN1 and  Policy Control rule

    Have you added NWA5123-AC to be managed by USG60W?

    if you need more ports by LAN1 use port role

Security Highlight