How to Create a VLAN - Updated Guide // OpenWrt Router (21.02 +), DSA, Managed Switch, RPi 4

Use openwrt

Thank you Heinser!

Thanks for watching LOOPER and you're welcome!
With the NanoPi R4S, I think you should no problems there on the VLAN side of things, using DSA and OpenWrt. Yes the router does have to support VLANs both from a hardware perspective and software. Chances are, from a hardware side of things, you should be fine. You're scenario should work, on the condition that VLANs are supported via software. You can flash a consumer grade router with OpenWrt and get VLAN capabilities, so long as its supported by OpenWrt. But it needs to support VLAN functionality so you can tag it. On the AP side, if you just want one network associated with that isolated AP, you can connect it to an untagged port and you should be good to go, it wouldnt need to support VLANs. However, if you want to broadcast multiple WiFi networks with different networks via multiple VLANs, then your AP will also need to support VLANs.
You can buy a managed switch as that will support VLANs, but the router is what would create the VLANs so that needs to support it. You can use your NanoPi R4S for this. Then you can manage the VLANs via the managed switch to tag / untag the VLANs on the managed switch ports. Then you can add Dumb APs as you see fit (only on untagged VLAN ports since they are dumb APs) to broadcast your one WiFi network.

Hi Jeff,
Thanks for watching! I’m flattered with how much detail you went into from my videos, let alone all the videos of you watched. I’m glad my videos could help you get a better understanding of how to achieve the router setup you want. I haven’t ever taught in a formal capacity, other than teaching colleagues at work. I just like to go into detail as I assume whatever is on screen, and if I haven’t covered it in a prior video, that I should talk about it, at least at a high level, if it’s not too important for the setup I’m doing per video. Showing the hardware bridges the gap between understanding both parts of the setup, so I find that important to show. As for the switch setup, I’m happy you found value in that. You may not need it depending on what the Banana Pi R3 supports in terms of VLANs (DSA or not). So I’d try DSA first and then switch config if that doesn’t work. PVID I covered as I didn’t understand at first what it was for. So I researched it a bit so I could understand and explain it, albeit not being an option used very often. We can only hope the devs will support the Banana Pi R3 beyond snapshots, but if not, you can always create your own custom image, as I’m sure you watched my building OpenWrt video. There’s even an easier way to do builds that I did cover, using the firmware selector (website), so if you don’t need custom configs, I’d try that first. You’re welcome! Thanks for being such a big fan, I really enjoy hearing what my viewers learn from my videos.
As for future video ideas, I have too many and too little time. It’s funny you say that as that’s a video idea I explored awhile ago, but havent gotten around to it. I would use batman-adv package to achieve it, part of the Open Mesh Project. That should cover your use cases too with fast roaming. Depending on your hardware, you’d want to use devices with good wireless radios (usb wireless radios or ones built into an SBC, with good antennas too). A basic Raspberry Pi wouldn’t do well, given its antennas, as it’s meant more for acting as a wireless client, rather than an access point. My idea was to use Raspberry Pis with wireless usb devices that use atheros chips, as those have the most OpenWrt support. Nonetheless, thanks again, and check out the link below for some mesh information with OpenWrt.
www.open-mesh.org/projects/batman-adv/wiki/Batman-adv-openwrt-config

Thanks for watching Blade's Toy Shop!
First, are you speaking about v3 of the hardware? It seems like you are since that version does not have wireless support.
openwrt.org/toh/linksys/e2500_v3
As long as Linksys E2500 has VLAN support (which it looks like it does), which it likely does, then setting it up as a managed switch should work. I don't have a video on how to set that up, but the set up should be the same as in this video, if DSA VLANs are supported.
If not, and swconfig is the supported VLAN software, then my prior video on VLANs would then do the trick.
ruclips.net/video/5TtlAXeaGUM/видео.html
I can't seem to find which VLAN software is supported, but one of those should work.

@@DevOdyssey I don't think any of the E2500 models have Wi-Fi support because the one I have doesn't show the Wi-Fi radio. I also believe I have a v1 because it doesn't have any version number on it (I actually have three of them, but I fried one the other day). Thanks for the response; I'll see if I can get the router properly configured so I have an actual switch instead of an ancient 10BaseT Five port hub.

@@MatthewN8OHU Looks like you are right according to their table of hardware, none of the Linksys E2500 supports WiFi, likely due to issues with Broadcom WLAN drivers.
You're welcome! Glad I can help. I hope you can get it configured and working properly, instead of being a slow dinosaur at this point haha.
I have an old Linksys WRT54G that I'm not sure what to do with. Given how old it is, it really won't function that well in any modern network, which is the only reason why I'll find somewhere to recycle it. Otherwise, I'd keep it. Used to be a very well loved router back in the day, but as with any tech, time gets the better of it.

You're Welcome Deon! Thanks for the compliment and for wawtching 😊

Thanks for watching Mani!
Does the TP Link have OpenWrt on it? If not, I'm not sure how to set up VLANs on TP Link routers, or if they have that feature. I think some of them can, but it depends on the model and the software. As for the Cisco switch, I don't think there is any switching hardware that can actually run OpenWrt, simply given the nature of switching hardware and their MCUs. I don't see it in their list of hardware, so I assume you may be mistaken here.
If its your TP Link router running OpenWrt, then you should be able to get this working with your Cisco switch. Simply set up the TP Link router with VLANs as in this video, such as at 2:20, and then on the Cisco switch side, make sure you create a corresponding VLAN(s) with the same numbers. Then make the ethernet port you connect on the Cisco switch, the trunk port, and the port on the TP Link router, a trunk port (aka carrying all your VLANS), and now your Cisco switch can carry all your VLANs, and you can assign your VLANs out to different ports on your Cisco switch.

Thanks for watching Mihalci!
I am not familiar with Fritz Box, other than the name, and knowing they make routers. If you want to run OpenWrt on this router, I'd refer you to the table of hardware on OpenWrt's forum. I searched it for you and was able to find the FritzBox 7530.
openwrt.org/toh/hwdata/avm/avm_fritz_box_7530
This should provide you the information you need to install OpenWrt onto your router.

Thanks for watching Geoff!
Appreciate the compliment. The major architectural change to DSA (from swconfig) occurred in version 21.02, using an updated Linux kernel (5.4). There have been no changes since then on how VLANs are configured, and chances are won't be any future changes for awhile, if not at all. So the same concept should apply to OpenWrt 22.03, granted making sure your hardware supports DSA VLANs.

Thanks for watching Mansur!
I appreciate the compliment. You are definitely right in that aspect, a picture is worth 1000 words. A topology diagram would indeed be helpful.
While in this video it's simple, some other videos have more complicated network topologies. I recently found a great software to help me create those topologies for visual purposes, and in an upcoming video I'll be using it.
Anyway for a quick explanation on this video, the topology is effectively this:
Router (VLAN 1,2) -> Switch
Here the router creates VLANs 1 and 2, and passes them to the network switch via a trunk port. Then the switch can pass the VLANs to an end device, such as a laptop.
Switch (VLAN 1) -> Laptop
This is what you see at 11:54, where my laptop is on VLAN 1 network
After that, I try out VLAN 2, by making some changes in the managed switch, and it looks like this.
Switch (VLAN 2) -> Laptop
Here, my laptop is on VLAN 2 network.
While this isn't as good as a topology diagram, I hope this is simple enough to visualize the networks, and how they are passed from router, to switch, to laptop.

Thanks for watching @coppenhall! I’ll be honest I’m not sure what you mean by ski skinwalker, do you mean a new skin / theme for OpenWrt? You can find some if you do some searching and just upload it, or if you want to get your hands dirty with some html and css, you can probably make you’re own without too much difficulty.

Thanks for watching Mark!
When I was making this video, I did get some new audio and video equipment and was having trouble with getting the audio just right. I did some post editing to increase the volume to make it more audible. I was able to improve it for my videos after this one.
Sorry about that!

Thanks for watching @_mult! To my knowledge, all versions of OpenWrt 23 use DSA for VLANs (so long as the hardware supports it) and I don't believe the LuCI GUI has changed either. With that, this guide should equally apply. Unless I am incorrect, then please let me know. Or if you have any particular questions setting up DSA VLANs, feel free to ask.

Thanks for watching Jean Charles C!
In regards to your error, I'm not sure where you are encountering this error in this video. OpenWrt doesn't use apt for the package manager, so you shouldn't be encountering the error here.
From what I see, it looks like you're trying to set up a build environment for OpenWrt, and your comment likely references that video. Is that correct? If so, then are you using Debian 11.2? Try running your sudo apt command again, and remove the "python-distutils-extra" package, as you many not actually need it to build OpenWrt. In 02:44 in the Building OpenWrt video, I don't see this package in there. So try proceeding without that.
ruclips.net/video/m9uWM6QUnpM/видео.html
In addition, if you have further questions regarding that video, make a new comment in that video so others can view the relevant information for that video. Thanks!

This video demonstrates how to use OpenWrt as a managed switch using DSA based VLANs with hardware that happens to be a RaspberryPi.
This configuration is not tied to Raspberry Pi and will work on other routers that support DSA VLANs. The concepts can even be extended to routers that still use swconfig.