Multiple vlan problem

[Guest]

[lirees]

hi, i have many difficult to configure  tagged vlan's on endian firewall, this is the switch configuration :

vlan 200
port 1 tagged
port 3,5,7 untagged pvid 200

vlan 300
porte 1 tagged
port 9,11,13 untagged pvid 300

vlan 400
port 1 tagged
all other port untagged pvid 400

all Vlan are in the same subnet, then the address of the green vlan interface must be the same for all vlan
i configure the vlan 200, 300 and 400 in the endian web interface, apply the change, connect the lan cable to the port 1 of the switch and then becomes unreachable, i can't ping it, i can't access in the web interface ...it's like dead
 
the only way to reconnect  is reset endian to default configuration .

where i wrong it's is possible configure this scenario with endian

[mrkroket]

Different VLANs but the same subnet, what's the point?

When you connect all VLAN's to GREEN, they will be bridged, so each VLAN can see others, isn't it?

Port 1 on switch must be in trunk mode. The 3 VLAN's should be connected to GREEN on EFW, this way br0 will have the IP of the subnet, and the 3 vlan will be bridged onto br0.
It should work.

Check Address Tables on switch to see if anything goes on port 1, and on what VLAN the MAC address appears.

If using VLAN's without any problem, on a complex configuration (VLAN's on top of bonded interfaces). The only difference is that I use a different subnet on each VLAN and each VLAN goes to a different zone.

[lirees]

i want create a vlan with the multiple subnet because i avoid to change static address of the machine's that i can't administrate

the configuration of the switch is correctly all work perfectly, server, pc , printer, wifi ecc..   it is only the endian than don't work !

from the address tables of the switch the port which is connected endian i see the correct mac but the vlan id is 1, there are not vlan id 200, 300, 400 !!

i try to reconfig the endian whit only one vlan and see what happens

[PhoenixVOZ]

hi, i have many difficult to configure  tagged vlan's on endian firewall, this is the switch configuration :

vlan 200
port 1 tagged
port 3,5,7 untagged pvid 200

vlan 300
porte 1 tagged
port 9,11,13 untagged pvid 300

vlan 400
port 1 tagged
all other port untagged pvid 400

all Vlan are in the same subnet, then the address of the green vlan interface must be the same for all vlan
i configure the vlan 200, 300 and 400 in the endian web interface, apply the change, connect the lan cable to the port 1 of the switch and then becomes unreachable, i can't ping it, i can't access in the web interface ...it's like dead
 
the only way to reconnect  is reset endian to default configuration .

where i wrong it's is possible configure this scenario with endian

You can login to root, change directory to /var/efw/ethernet and then remove the file VLAN_eth0 (or something else like this) then you edit the file br0 (if bridged) with nano command and delete all value like eth0.* (eth0.300, eth0.400) save and reboot your firewall. Your EFW will work well.