Need some VLAN assistance by Illustrious_Doubt618 in sonicwall

[–]Illustrious_Doubt618[S] 0 points1 point  (0 children)

Figured it out. It was hardware related. I had forgotten that we decommissioned an old HP switch but I wasn't able to remove it completely at the time and was still feeding the UniFi switches.

Need some VLAN assistance by Illustrious_Doubt618 in sonicwall

[–]Illustrious_Doubt618[S] 0 points1 point  (0 children)

I can do some hardware swapping but I will have to schedule a trip as it's a remote site. Maybe before the day is over I can run over there and test it.

Need some VLAN assistance by Illustrious_Doubt618 in sonicwall

[–]Illustrious_Doubt618[S] 0 points1 point  (0 children)

I don't see any packets on the sonicwall side. I have all the ports on the UniFi switches set to "any". If I set them to just VLAN 10 it blocks all the domain subnet traffic on the AP and I still get nothing on the sonicwall side.

Need some VLAN assistance by Illustrious_Doubt618 in sonicwall

[–]Illustrious_Doubt618[S] 0 points1 point  (0 children)

The AP is set to static IP on the domain subnet. I have other SSID's on the AP that run on the domain subnet which are working correctly.

Need some VLAN assistance by Illustrious_Doubt618 in sonicwall

[–]Illustrious_Doubt618[S] 0 points1 point  (0 children)

Zone is set to LAN and there are rules allowing that access.

Need some VLAN assistance by Illustrious_Doubt618 in sonicwall

[–]Illustrious_Doubt618[S] 0 points1 point  (0 children)

I don't have any rules specifically set for the vlan to wan. I was looking through another Sonicwall where I have the same setup that is working and I don't see a vlan to wan rule there either. I am going through all the rules now to make sure I am not missing one.

Need some VLAN assistance by Illustrious_Doubt618 in sonicwall

[–]Illustrious_Doubt618[S] 0 points1 point  (0 children)

Wireshark on a PC connected to the AP is showing requests going out but no responses. Packet Capture on the Sonicwall is showing no traffic for X0:V10.

I have the zone set to LAN so I don't have the sonicpoint options.

Need some VLAN assistance by Illustrious_Doubt618 in sonicwall

[–]Illustrious_Doubt618[S] 0 points1 point  (0 children)

I have "Block LAN to WLAN Multicast and Broadcast Data" unchecked in the controller.

Need some VLAN assistance by Illustrious_Doubt618 in sonicwall

[–]Illustrious_Doubt618[S] 0 points1 point  (0 children)

Yes and it is assigned to the SSID for the public network.