1.
Wrong connection: Fiber (from street) -> ONT -> switch -> modem -> router
: the switch gets an IP address from the ONT> the switch gives an IP address which is the same as ONT gives to the modem> the modem gives an IP address(same IP) to the router.
Some managed switches like Netgear's works as an unmanaged switch without any setup(factory default). So it doesn't matter whether a managed or an unmanaged switch. It just works. But it's a wrong setup unless you have 2 or more physical IP addresses and you need to use those physical IP addresses.
2.
Correct connection: Fiber (from street) > ONT > modem > router > switch
: You should changed the modem to Bridge mode. Disable DHCP and some options.
Warning.
No.2 works with your network environment. But it may not work with other network environments.
Read this.
This procedure should be performed AFTER you have successfully installed the ORBI router and satellite per Netgear installation instructions. Make sure you have a laptop or a computer that you can directly connect to the BGW210-700. Plug an ethernet cable into the ethernet port on the laptop...
community.netgear.com
Was looking for something else & stumbled upon this; I wanted to clarify for others searching similar topics...
You CAN and depending on your setup & requirement MAY need to install a switch between the ONT and a router. You CAN use a dumb switch, that is relatively pointless; or you can use a managed L2+ switch with DHCP. This can have several benefits & as I mentioned, CAN BE INVALUABLE, if not necessary, in troubleshooting network issues or just keeping an eye on your network traffic.
I use a L2+ managed web switch at the ont, which allows me to [packet sniff the entire network, see exactly what is traversing my network & it provides the additional benefit of almost never having to worry about IP issues, while providing 80Gbe of throughput (40Gbe unblocked) for my LAN & VLAN's.
Thekey to the switch is L3 capabilities, DHCP in particular, allowing it to pull my DYNAMIC public IP from the ISP. This allows me to then reset or replace routers without losing my IP, the ISP none the wiser. Even with a localized power outage, between my ONT backup power & the UPS, I keep my public IP. The switch then sends out runs & drops to the various rooms, sending a 10Gbe to my NAS NIC-1, where the internal virtual switching adds a firewall & second layer of access control & required routing. Another goes to VPN firewall router, 4-speed POE switches, to security cameras and other security related I/IIoT devices, cameras & a group of firewalled mesh routers, keeping available all of the enhanced features typically lost to AP mode or bridged connections. This AX WiFi group is whitelisted for only my wireless IP cams. Back at the ONT switch, this VLAN is segregated with strict ACL control, allowing only the require sorce & destination IP's to be accessed.
The second run is another 10Gbe, to the second router & another set of Mesh, but EAP's this time, with ethernet backhaul, tied into the office switch, where NAS NIC #2 & 3 can communicate with media devices for DLNA & media serving, using LACP, along with another VLAN & port bonding, limiting what services can be accessed by the media node of my network.
Lastly, I have the third run, this going to another multi-VPN switch, to NIC #3 on the NAS, to a dedicated 10Gbe connection for the lab, terminal & for my laptop, for communicating with a second location & used as a private network for just those items.
For the most part, I now control everything that comes in & goes out on my network & I am now integrating as many services as possible to the lab & my server, from DNS to IoT (handle my own DNS, have intranet based network access, & currently learning my way thru JS, MQTT & a dozen other protocols & languages, already handling 75% of all my scenes and routines internally. My ultimate goal is to keep my data mine, my part to hamper companies using public resources to reap huge profits, which they did for decades without notice or consent.
BTW, I am not, nor have I ever been, in the tech, IT or ISS industries. Everything so far being learned in spare time, self-taught, with countless debts of gratitude owed to people on forums. Synology boards, QNAP communities & especially in the Cisco communities. Either it had been done before and well documented, or I lucked into someone eager to teach to someone hungry for knowledge, undoubtedly tired of the spoon feeding requests seemingly so prevalent these days. So many went out of their way to answer questions, suggest directions where merited or add to the journey of creating a means to accomplish the desired outcome.
