Can't reach my switch's management interface from my VLANs
-
Well sorry to tell you but that switch is garbage... You can not remove vlan 1 from ports... So its pretty useless doing vlans
v3 has firmware fix, but v1, 2 are just F'd
You can use it for a dumb switch, but if your going to want to actually do vlans your going to need different switch.
here is thread over on their forums about it
https://community.tp-link.com/en/business/forum/topic/96245?page=1Took them forever to fix!! And they never fixed it for the older hardware
edit: I take its the same interface to the switch... So what mac do you see for the IP of the switch, and how many different interfaces do you see on.. Do you see it on your .100 as well?
Do you have a different switch you can use? That switch is just a POS... So you can never actually create an isolated L2.. all your doing amounts to running multiple L3 on the same L2..
-
Crap ok. You convinced me for the switch. I will try getting a new one soon.
The thing that baffles me, is that I'm at least expecting to see the packet exit em0 on pfSense, which I am not.
When doing an "arp -a" I only see 18:d6:c7:9a:8e:ff (TP-Link) on em0, not em0.100, which is expected unless I'm wrong?
Edit: it seems that I can upgrade to the V3 firmware according to TP-Link in that thread you gave me. I will try that.
-
You can use the v3 hardware firmware on the v2 hardware? Really? I have the v2 same switch on my self... I should try that.. Your saying it says that in that long has thread I linked too? Do you have a direct link - thanks!
going through that whole thread again, I don't see where you can use v3 firmware on v2 hardware.. I see this
Support told me to try the V3 firmware but it reports invalid image when I try. I advised them of this and they then said it wasn't compatible. Can the V3 firmware be made to work?
Makes no sense that you could do that, if it actually is the same firmware why would they not just back ported it so it can install on v2 hardware, etc..
Like I said that switch is CRAP, and I really wouldn't have anything to do with that company ever - if they can not get something like basic vlan isolation correct.
Only reason its on my shelf is people here complaining that vlans were not working, so I bought one myself to play with - and yup they were right.. It doesn't do vlans!!
I have a dlink and netgear that are in the same price point area that do them just fine.. This works fine for example
https://www.amazon.com/D-Link-EasySmart-Gigabit-Ethernet-DGS-1100-08/dp/B008ABLU2II used it for a short time to test, but currently none of those low end switches actually on my network.. I have cisco sg300-28 and sg300-10 currently... If your wanting to "lab" something in that price point would be much better ;) I got the 28 for like $180 a while back.. Can do L3 routing, etc. etc.
-
https://community.tp-link.com/en/business/forum/topic/96245?page=3
post 23 and 24. Rain is from TP-Link support according to post 20.
-
Well going to plug it in right now and give it a little test ;)
edit:
Well look at that!!
Hmmm - now to see if actually fixed the vlan issue.
edit2: Well the gui config application does not allow you to remove ports from vlan 1... But the web interface does..
-
That’s great news! I will try to upgrade it later today or this week. In the meanwhile, happy new year to everyone!
-
Wonder if I can put V4 firmware on it ;)
-
@johnpoz that's awesome, you did a firmware upgrade on this hardware:
TL-SG108E 2.0 and that even replaced your hardware to:
TL-SG108E 3.0
Tell me the trick and I'll try that with my car!
-
BTW: is the web interface of those switches reachable on all VLANs or do they have a management VLAN?
-
@jahonix from all VLANs and that’s hardcoded. Can’t limit which VLANs can access it.
-
Yeah that was there reasoning behind not being able to remove vlan 1 ;) Now that you can remove vlan 1 from ports - you should be able to limit from what network you can access the switch gui from.
