NoE  Freshman Member

Comments

  • well, the GW of 192.168.94.0/20 is defined within the bridge itself:
  • so after quite a time of thinking I have moved forward…. I have left the two VLANs defined over interface ge6 as they were, together with DHCP servers defined over them: VLAN5: ge6/5: 192.168.5.1 - DHCP server with pool starting at 192.168.5.2 VLAN6: ge6/6: 192.168.6.1 - DHCP server with pool starting at 192.168.6.2 There…
  • All components of Unify network are interconnected via Unify switches. One of these switches is wired directly into ZyWALL port ge6. On ZyWALL's port ge6 DHCP server 192.168.4.x is defined which gives all Unify components IP from this range - this is behaving correctly. I am defining the SSID within Unify network only. I…
  • @PeterUK yes, you're right. I have proceed with VLANs now, I have created two over ge6: Both VLANs and ge6 interface are within zone LAN1: The security policy of LAN1 is: The restriction via Policy Route to access only Internet works niicely: However the problem persists: only Guest WiFi defined over Default network…
  • So I have tried today many kinds of setup, but without desired outcome. Main try was to create VLAN on ZyWALL - VLAN8 in my case, which I hav defined over interface ge8. The VLAN interface - vlan8 - was defined also as DHCP server with its own range - 192.168.8.x. The intent behind this was that I would define the…
  • @mMontana @PeterUK Ubiquity has different design from the rest of WiFi manufacturers. The master of masters is always so called "Unify Controller", which is sold as a hardware blackbox, or it could be installed as a server-like system on some machine (but this is really cumbersome). Another powerful and useful component…
  • @PeterUK I did something similar as one of many tries: I have defined VLAN6 within ge8 where there is defined pool of adresses: 192.168.6.0/24 for Intranet WiFi IPs and then I have defined the WiFi network ZsM_Internal within Ubiquity as "VLAN only" with the same VLAN ID - i.e. 6. It did not helped. So perhaps I would try…
  • @mMontana thanks for your answer. Yes, the zones….perhaps this will be the key - I have assigned ge8 to LAN zone, the default Zyxel zone, but I am not 100% sure, if this zone is the same as for interface ge2 (I have left the customer's building just half hour ago, so I cannot check at the moment). I like your hint, pretyy…
  • Hi @zyman2008 I have just followed your setup proposal, but what I needed to add was the bridge according KB article proposed by @Fred_77 and mentioned by @Zyxel_James - as the clients within 192.168.94.x network are IP-address-fixed, I could not used DHCP, so that is why the bridge.Now everything goes very nice :smile:…
  • I have another downtime agreed next Monday, I will try your proposal and of course....wil let you know.Thanks a lot for your inputs and assistanceCheers, NoE
  • Hi @Zyxel_James thank you for the KB article. I think I have understood the point, however - one question:The port 3 for LAN1 has IP 192.168.1.1 all the time. But - in my case (WAN GW 192.168.94.1, IP range for our special PCs:192.168.94.(2-254 )) - the switch with those WAN2 addresses (192.168.94.0/24) will be plugged…
  • Hi @StephanHollaus I have faced similar challenge.I have USG FLEX 700 and inside our company we have acquired Unify controller and some Ubiquity APs and switches.I set interface ge6 for Unify switch (to which Unify Controller is plugged together with APs)as follows:Zone WiFi_LAN, DHCP, 192.168.7.x All the Ubiquity items…
  • Thanks @Fred_77 I will try that, obviously something is missing there ;-)NoE
  • 192.168.94.X must use its GW only - i.e. for the Internet it should use ISP2 only. This network uses some services reachable via GW 192.168.94.1 which are legally strictly defined and it is not desirable to send related packets via public Internet - i.e. not over main ISP1. This is the situation for 192.168.94.X network…
  • Yes, it is security policy.
Default Avatar