[ previous ] [ next ] [ threads ]
 
 From:  Tim Nelson <tnelson at fudnet dot info>
 To:  Aaron Cherman <aaronc at morad dot ab dot ca>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] VLAN's, QoS, bandwidth hogs
 Date:  Sun, 23 Jul 2006 22:33:28 -0500 
I recently setup a similar network for an apartment complex. We had a 48 
port switch with each port tagged as a separate VLAN. We set one port as 
the trunk port and ran it into the monowall's LAN side. The DSL modem 
was setup in bridged mode and went into the WAN side. We also enabled an 
OPT port and used it for wireless access via another switch. Firewall 
rules were added so wireless clients could not access the resident 
network and QoS was put into place using the wizard to throttle users on 
both networks.

--Tim

Aaron Cherman wrote:
>> * Apartment building
>> * DSL
>> * Each apt ought to be on its own VLAN
>> * Each apt to see internet but not each other
>> * Cisco switch (don't know model ... yet)
>> * A few serious bandwidth hogs (need to reign them in)
>>
>> Can I create 24 VLAN's, one for each switch port, as handled by the
>> switch; or can I create 24 VLAN's on the m0n0wall?; can QoS be applied
>> to all of the VLAN's? I think the regular "QoS wizard" will be just fine
>> for us without too much tweaking since I can enable "share bandwidth
>> evenly across LAN", if that setting (in this situation) means "share
>> evenly across all VLAN's".
>
> First, I think m0n0wall can only handle a certain number of interfaces 
> (I'm not 100% sure on this).  If it could handle all 24 VLANS, plus 
> the LAN and WAN, it still seems to me like the hard way of doing 
> this.  Can I assume the building has 24 units?  Each with a home-run 
> to the switch?  Does the switch have trunk ports?  Most managed 
> switches can have port based VLANs configured in them - meaning you 
> can set which ports can see which ports. So all you would have to do 
> is make sure that the only port all of the units can see is the one 
> going to the DSL modem.
>
> If I am wrong, someone else please correct me.
>
>
> Aaron
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>