doc:appunti:hardware:gl_ar750
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revisionLast revisionBoth sides next revision | ||
| doc:appunti:hardware:gl_ar750 [2021/05/10 07:19] – [Configuring the switch from the command line] niccolo | doc:appunti:hardware:gl_ar750 [2021/05/11 08:25] – [VLAN limitations] niccolo | ||
|---|---|---|---|
| Line 75: | Line 75: | ||
| ===== VLAN limitations ===== | ===== VLAN limitations ===== | ||
| - | VLAN ID number | + | There is a limit to **16 VLANs**, numbered from #0 to #15. Default configuration uses **VLAN #1** for **eth1.1** which is connected to bridge **br-lan**. This limitation is not visible from the LuCI web interface: any number greater than 15 will be silently accepted, but it will be not functional. |
| + | |||
| + | You can view the actual switch configuration using: | ||
| + | |||
| + | < | ||
| + | swconfig dev switch0 show | ||
| + | </ | ||
| + | |||
| + | You can check the limit issuing the following command (notice the error message): | ||
| + | |||
| + | < | ||
| + | swconfig dev switch0 vlan 16 set vid 16 | ||
| + | Failed | ||
| + | </ | ||
| You cannot mix tagged and untagged VLAN on the same switch port. | You cannot mix tagged and untagged VLAN on the same switch port. | ||
| + | |||
| + | * Only one port is allowed to carry untagged traffic for a specific VLAN. | ||
| + | * You cannot mix tagged and untagged VLAN on the same port. E.g. if a port carries untagged VLAN#10, the same port cannot carries tagged VLAN#11 (depending upon the order of the commands, the settings will be changed to carry buth as tagged). | ||
| + | |||
| + | Limitation example #1: the **untagged VLAN#10** is **removed** from port **#1** and **#2**: | ||
| + | |||
| + | < | ||
| + | swconfig dev switch0 vlan 10 set ports "0t 1 2" | ||
| + | swconfig dev switch0 vlan 11 set ports "0t 1 2" | ||
| + | swconfig dev switch0 show | ||
| + | ... | ||
| + | VLAN 10: | ||
| + | vid: 10 | ||
| + | ports: 0t | ||
| + | VLAN 11: | ||
| + | vid: 11 | ||
| + | ports: 0t 1 2 | ||
| + | </ | ||
| + | |||
| + | Limitation example #2: the **untagged VLAN#10** is **changed to tagged** on **port #1** and it is removed from port **#2**: | ||
| + | |||
| + | < | ||
| + | swconfig dev switch0 vlan 10 set ports "0t 1 2" | ||
| + | swconfig dev switch0 vlan 11 set ports "0t 1t 2" | ||
| + | VLAN 10: | ||
| + | vid: 10 | ||
| + | ports: 0t 1t | ||
| + | VLAN 11: | ||
| + | vid: 11 | ||
| + | ports: 0t 1t 2 | ||
| + | </ | ||
| + | |||
| + | ===== Configuring a DMZ ===== | ||
| + | |||
| + | We used VLAN to configure a DMZ ... FIXME | ||
| + | |||
| + | ===== Configuration ===== | ||
| + | |||
| + | === Change SSH Port === | ||
| + | |||
| + | From the LuCI interface: | ||
| + | |||
| + | * System => Administration => SSH Access | ||
| + | * Port: | ||
| + | |||
| + | === Install the tcpdump package === | ||
| + | |||
| + | From the command line: | ||
| + | |||
| + | < | ||
| + | opkg update | ||
| + | # tcpdump-mini requires ??? kb: | ||
| + | opkg install tcpdump-mini | ||
| + | # coreutils-base64 requires 28 kb: | ||
| + | opkg install coreutils-base64 | ||
| + | </ | ||
| + | |||
| + | === Crontabs === | ||
| + | |||
| + | < | ||
| + | crontab -e | ||
| + | / | ||
| + | / | ||
| + | ps | grep crond | ||
| + | </ | ||
| ===== Web References ===== | ===== Web References ===== | ||
doc/appunti/hardware/gl_ar750.txt · Last modified: 2023/09/11 07:37 by niccolo