ZyXEL Communications GS1910, XGS1910 Internet, 5.5.1 Creating a VLAN for Port which is not IEEE 802.1x enabled, 5.5How to Set Up a Guest VLAN with IEEE 802.1x Authentication

Chapter 5 Tutorials

All ports on the Switch are in VLAN 1 by default. Say you enable IEEE 802.1x authentication on ports 1 to 8. Clients that connect to these ports should provide the correct user name and password in order to access the ports. You want to assign clients that connect to ports 1, 2 or 3 to a guest VLAN (200 for example) when they fail to authenticate with the authentication server. In this guest VLAN, clients can surf the Internet through a gateway attached to port 10, but are not allowed to access other network resources, such as the mail server or local data base.

VLAN 1

5.5.1 Creating a VLAN for Port which is not IEEE 802.1x enabled

Follow the steps below to configure port 10 as a member of VLAN 200.

1Access the web configurator through the Switch’s port which is not in VLAN 200.

2Click Configuration > VLANs > VLAN Membership in the navigation panel. Click Add New VLAN to create VLAN2.

3Enter 200 in the VLAN ID field and enter a descriptive name (VLAN200 for example) in the VLAN Name field for this VLAN.

4Configure port 10 to be a permanent member of the VLAN.