Menu
What's new
By:
Filters Better Search

Enable VLAN tagging in stock RT-N66U?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

drinkingbird

drinkingbird

Part of the Furniture
Curious if it would just be a matter of going into the CLI or serial interface to configure VLANs on stock ASUS firmware. Would need to assign a VLAN to each wireless interface then either set up a tagged port or assign different ports to each VLAN. I know it is a feature of Tomato but would like to stick with stock if at all possible.

The stock firmware supports everything I need (just going to run it as an AP) except I need to be able to assign different VLANs to different SSIDs.

I guess I could get the source code and figure out how to do it, but really don't have that much time on my hands....
 
I am not sure what impact this will have on the GUI, cause stock firmware don't account for advanced users. But in short, the nvram listing WRT VLANs are here.

vlan2ports=0 8u
wl0_vlan_prio_mode=off
vlan2hwname=et0
wl_vlan_prio_mode=off
lan_ifnames=vlan1 eth1 eth2
vlan1hwname=et0
vlan1ports=1 2 3 4 8*
landevs=vlan1 wl0 wl1
wl1_vlan_prio_mode=off


Since this is built off busybox, I think the standard DD-wrt way of doing ( separating the interface from the bridge, tagging it ) works .
 

Great info, thanks. Of course who knows if it would save it on reload etc, would probably have to reapply the custom config a lot.

Is there a CLI interface via Telnet/SSH or only serial?
 
There is a telnet interface to the router (administration > telnet). I wish it was ssh though. Anyway, it drops you into the busybox shell with root(#). You should be able to write to nvram using nvram set <variable key>=<variable value> pair. Finally, do a nvram commit to save. Recommend you also modify your firewall to block telnet access from your WAN as this traffic is sent clear text.
Although I am trying to find the nvram variable that could launch a startup/shutdown script. I haven't spent much time on it.
 
Last edited:
srinivasvaradaraj said:
There is a telnet interface to the router (administration > telnet). I wish it was ssh though. Anyway, it drops you into the busybox shell with root(#). You should be able to write to nvram using nvram set <variable key>=<variable value> pair. Finally, do a nvram commit to save. Recommend you also modify your firewall to block telnet access from your WAN as this traffic is sent clear text.
Although I am trying to find the nvram variable that could launch a startup/shutdown script. I haven't spent much time on it.
Click to expand...

Unfortunately even when you commit to nvram it seems to restore the settings for some things (like vlan1ports etc) on reboot. Guess I need to play with it more, I'm not terribly familiar with these, not sure if there is some config file somewhere that needs to be updated or what.
 
Well I've gotten so close to getting this working using RMerlin's build (to add scripting support).

I'm now at the point where I have VLANs working, the bridges split so the guest networks go to the second VLAN only, and encryption up and running on my primary networks. The issue at this point is as soon as I enable encryption on the guest networks, they're unable to connect. Work fine with no encryption, and the main wireless works fine with encryption, so need to tinker around a bit more.

I'm also looking to try and find a way to enable beamforming (AI Radar) in Tomato as that's the main thing keeping me from using it. Have started researching but need to do more, not sure if it is a matter of a newer driver being needed in Tomato or just some WL command that needs to be run.
 
I'm stumped, I have VLANs working, main network is up and running with WPA2, but guest network only works with no encryption or WEP. WPA/WPA2 causes it to fail with similar symptoms to when you are putting in the wrong password. So I can do guest with WPA without VLANs no problem, or vlans without WPA no problem, but somehow both doesn't work. Even stranger that WEP works fine, maybe WEP is fully in the radio hardware where WPA needs to communicate to the CPU and it isn't able to do it for some reason. Who knows. May have to just go to Tomato.
 
And what about VLANs on LAN ports? I want to split LAN1 and LAN2-4 ports to different VLANs. How can I do this on stock firmware?
 
You must log in or register to reply here.

Similar threads

S
GT-AX11000 (not Pro) - VLAN support on LAN side
Replies
3
Views
570
philmaybe
P
M
802.1q VLAN tagging menu missing for WAN interface (Asus RT-AX86U Pro)
Replies
4
Views
359
Michael Levi Hillel
M
M
GNP VLANs in AP mode
Replies
1
Views
233
tiddlywink
T
Phantomski
Questions about VLAN support in 3006
Replies
5
Views
519
Tech9
Tech9
M
Simple Trunk on GT-AXE16000 help
Replies
6
Views
1K
mbze430
M

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 720 (members: 25, guests: 695)
Top