How to configure Multi-Networks & Multi-SSIDs on Omada SDN Controller

Omada Software Controller( V4 )
Recent updates may have expanded access to feature(s) discussed in this FAQ. Visit your product's support page, select the correct hardware version for your device, and check either the Datasheet or the firmware section for the latest improvements added to your product. Please note that product availability varies by region, and certain models may not be available in your region.
Companies usually restrict departments to visit each other for security reasons. Thus the company will divide the network into different VLANs to isolate the network devices in different departments. Each VLAN (Virtual Local Area Network) will be assigned to the different wired and wireless networks to meet these office needs. Omada SDN solution can help you easily complete the configuration for multi-VLANs and multi-SSIDs.
Application Scenario
A company wants to provide two departments with wired and wireless networks, and the two departments are in different subnets. It is required that the two departments cannot access each other, but they can both access the internet. Take the following topology as an example.
Configuration
Step 1. Create Network – Set VLAN Interface , VLAN, and DHCP Server
1) Go to Settings > Wired Networks > LAN Networks, and click +Create New LAN to create VLAN interfaces for the two departments.
Here we take LAN PE_Department as the configuration example, and the settings for RD_Department are similar.
2) Follow the steps above to create the LAN for RD_Department. Then, two LANs are created.
Step 2. Apply Profile to Switch Port
1) Go to Settings > Wired Networks > Profiles, and each network will automatically create a corresponding profile.
The automatically generated profile uses its own network as native network (PVID) and it is untagged.
2) Go to Settings > Wired Networks > Switch Settings, click of the switch to open the following sidebar.
3) Click of the port to which you want to apply the profile. Apply the profile PE_Department to port 3 and profile RD_Department to port 4.
Note:
1. Do not apply the profiles to ports with EAP connected. Otherwise, the wireless clients of the EAP will fail to connect to the internet.
2. Do not apply the profiles to the port with your PC (running the Omada Software Controller) connected. Otherwise, the software controller on the PC will fail to work properly.
Step 3. Create SSIDs
1) Go to Settings > Wireless Networks. Click +Create New Wireless Network. Specify the network name, band and password for the new SSID.
2) Click Advanced Settings, and set the VLAN ID as 200 for PE_Department. Click Apply.
3) Follow the steps above to create a SSID for RD_Department, and set the VLAN ID as 100 for RD_Department.
Step 4. ACL Settings
1) Go to Settings > Network Security > ACL > Switch ACL. Click +Create New Rule.
2) Specify the rule name, choose Deny as Policy, and select All for Protocols.
3) Then enable Bi-Directional to set a reverse rule. Choose Network-> PE_Department as source and Network -> RD_Department as destination.
4) Click ACL Binding, apply the rule to all switch ports. Click Apply.
Two rules will be created simultaneously.
Step 5. Verification
Wired network: A PC in RD_Department connects to the wired network and obtains IP address 192.168.100.234. A PC in PE_Department connects to the wired network and obtains IP address 192.168.200.145. They cannot ping each other, but they can access the internet.
Wireless network: The two PC connect to the wireless network of their department. They cannot ping each other, but they can access the internet.
Полезен ли беше този ЧЗВ?
Вашите отзиви помагат за подобряване на този сайт.
Какви проблеми открихте с тази статия?
- Недоволен от продукта
- Твърде сложно
- Объркващо заглавие
- Не се отнася за мен
- Твърде неясно
- Друга причина
Благодаря ти
Оценяваме вашето мнение.
Препоръчани продукти
This website uses cookies to improve website navigation, analyze online activities and have the best possible user experience on our website. You can object to the use of cookies at any time. You can find more information in our privacy policy .
This website uses cookies to improve website navigation, analyze online activities and have the best possible user experience on our website. You can object to the use of cookies at any time. You can find more information in our privacy policy .
Basic Cookies
These cookies are necessary for the website to function and cannot be deactivated in your systems.
TP-Link
SESSION, JSESSIONID, accepted_local_switcher, tp_privacy_base, tp_privacy_marketing, tp_smb-select-product_scence, tp_smb-select-product_scenceSimple, tp_smb-select-product_userChoice, tp_smb-select-product_userChoiceSimple, tp_smb-select-product_userInfo, tp_smb-select-product_userInfoSimple, tp_top-banner, tp_popup-bottom, tp_popup-center, tp_popup-right-middle, tp_popup-right-bottom, tp_productCategoryType
Youtube
id, VISITOR_INFO1_LIVE, LOGIN_INFO, SIDCC, SAPISID, APISID, SSID, SID, YSC, __Secure-1PSID, __Secure-1PAPISID, __Secure-1PSIDCC, __Secure-3PSID, __Secure-3PAPISID, __Secure-3PSIDCC, 1P_JAR, AEC, NID, OTZ
Zendesk
OptanonConsent, __cf_bm, __cfruid, _cfuvid, _help_center_session, _pendo___sg__.<container-id>, _pendo_meta.<container-id>, _pendo_visitorId.<container-id>, _zendesk_authenticated, _zendesk_cookie, _zendesk_session, _zendesk_shared_session, ajs_anonymous_id, cf_clearance
Analysis and Marketing Cookies
Analysis cookies enable us to analyze your activities on our website in order to improve and adapt the functionality of our website.
The marketing cookies can be set through our website by our advertising partners in order to create a profile of your interests and to show you relevant advertisements on other websites.
Google Analytics & Google Tag Manager
_gid, _ga_<container-id>, _ga, _gat_gtag_<container-id>
Google Ads & DoubleClick
test_cookie, _gcl_au