Tap to unmute

Inexpensive Budget Switch: TP Link TL-SG108E HW Rev. 3.0 With VLANS & pfsense Review

Бөлісу
Ендіру

Пікірлер • 364

  • Tobias Putman Photography
    Tobias Putman Photography 3 жыл бұрын +5

    I have an 8 port PoE (TL-SG2210P) in my homelab for AP's and VoIP phone and for that it's excellent. It's a little higher end than that one I believe, really like it for home use. Would not put in in a corporate network. Liked the review! Nice overview and very complete. 10/10 for shiny box!

  • Tim Robertson
    Tim Robertson 5 ай бұрын +14

    A while back I had the management bleed over problem described and where I had the switch made this a deal breaker. Today, I upgraded the Firmware (I have V3 hardware revision) because I was encouraged by the bug fix text. After wrestling with the .1q VLAN interface, I was able to eliminate access to the MGMT web interface on the non-Default VLAN! The key was assigning the Port as untagged on the new VLAN (add/update button), then removing VLAN 1 from that Port (add/update button) followed by Apply.

    • DeFi Logic
      DeFi Logic 3 ай бұрын

      oh. good advice! I will have to try that!

  • Alex D
    Alex D 4 жыл бұрын +10

    It is common for switches without "management vlan" option to allow traffic to the management IP on all vlans. It is more of a feature, especially for an office switch. Even when the pvid of 1 is not there .. It could be worse, you could have a Catalyst that forwards any traffic with destination port 179 to the management CPU.. That is fun ..

  • Giorgio Aresu
    Giorgio Aresu 4 жыл бұрын +5

    Thanks for these guides/tutorials/reviews that do not stop at showing the product but actually show the configuration and how to do stuff with pfsense :)

  • Reggie Reginato
    Reggie Reginato  Жыл бұрын +1

    I'm a little surprised by that - D-Links DGS1100-08 (rev B1) doesn't have https support, but it's very good when it comes to being able to lock out the administration stuff from untrusted sources. I just don't like how limited the D-link is in it's setup (no lag support, but does have trunk aggregation support, but too many limits on configurations like vlans, and some other really confusing things in it's interface if your looking to set up physical port security, etc). It's not bad, but I out grew it extremely fast.
    Of the budget switches, it's def a step up in price, but honestly for small soho style managed switches for small networks, I find Netgears tiny GS108T (V2) switch to be a real gem.
    Anyways, thanks for the review!

  • Jared S
    Jared S 3 жыл бұрын +3

    I’ve had ver2.0 of this switch for years now. It’s work great and has never given me any issues. Only thing I don’t like it the lack of web-based management GUI but unless you’re reconfiguring it often the Windows-based software is fine.

    • Gerald H.
      Gerald H. 4 күн бұрын

      @megamaser that’s why Jared wrote he owns v2.0 and this review is of version v3.0.

    • megamaser
      megamaser 4 ай бұрын +4

      What? He uses the web based management gui in this video.

  • Populist Party
    Populist Party 11 ай бұрын

    Excellent review...just the right length and content. I was just about ready to purchase until you talked about the security vulnerabilities. This probably is still just fine for my application (home network), for the price, and for the time being.

  • Wiebo Westerhof
    Wiebo Westerhof 4 жыл бұрын +1

    Thanks for the review. It is a very basic looking, but reliable, low power use, bit of gear. I've used it mainly in bedrooms where I just wanted to run a single connection up to the main stack, but have a few drops in a bedroom, one for IOT like a FireTV, another for connecting a printer, another for laptop or other networked stuff. In LATAM, this model plus the unmanaged 24 port GBit switches are pretty popular, with DLink often used for managed switches at 3x the cost. Not ever had a problem, and the firmware has received updates over time. I agree with you that I probably wouldn't put this into a massive network, but for a smaller setup, these things would do the job. As they have no fans and are fairly temperature-robust, they are probably ideal for a small install that needs a VOIP and non-VOIP VLAN, perhaps a wifi for guests. I still have to set up my VLANs at home to do the IOT VLAN with the EdgeRouter Pro I have, but I need to plan that out beforehand. Appreciate you guys making videos and sharing your knowledge.

  • Chris Bowie
    Chris Bowie 3 жыл бұрын

    I think the management interface is probably tied to the default vlan of 1 which is probably where your traffic goes since you statically changed the client's IP to a subnet other than what that port's Vlan is supposed to be on. Could be that is a vulnerability of the switch.

  • GenX Guy
    GenX Guy 3 жыл бұрын +1

    Great video! Really liked your description of tags vs untangled...network engineer myself but its been 15 or so years so I have forgotten a few things :)

  • Thedosius Dreamtwister
    Thedosius Dreamtwister 4 жыл бұрын +4

    Untagged traffic defaults to VLAN 1. So does all of your layer 2 control traffic. It's defined in the specification and covered on both the CCNA and Net+ certifications.

    • TechGuy
      TechGuy  Жыл бұрын

      So this switch is not suitable for connecting PCs to directly ? PCs generally send untagged packets. All untagged packets go to the VLAN1 group, which is every port on the switch ? Or how does that work ?

  • John Holcomb
    John Holcomb 4 жыл бұрын +5

    Would love to see you review the DLink DGS-1100-08... It's going for about $35 as of this post, but has quite a few more settings than this does. I picked up one of those for my little home lab and it works GREAT, and the VLAN setup is much more sane.

  • James Knott
    James Knott 2 жыл бұрын +1

    Be careful with TP-Link and VLANs. Some switch and access point models don't handle VLANs properly. Multicasts can leak from the main LAN to the VLANs, making it impossible to use IPv6 on the VLANs. I have experience this with an AP and others have with the switches.

  • remle ikawura
    remle ikawura 2 жыл бұрын +3

    for those who were worried about able to access the web admin page of the switch, all you have to do is to make ports not member on VLAN1 just dont remove all ports membership on VLAN1, just leave 1 port for management access of the switch on VLAN1.

    • Wahinies
      Wahinies 2 жыл бұрын +1

      Mine would not allow removal of VLAN1 membership. Through discussions, those who contacted tplink about it were told it was an antilockout 'feature'

  • D. Tubbs
    D. Tubbs 11 ай бұрын +6

    Thank you very much! This was succinct and comprehensive. It was also relevant easy to understand. I have Network Chuck, but I've also been looking to add some other quality channels who discuss networking. I look forward to more videos from you.

  • h3llknight
    h3llknight Ай бұрын

    Thank you for making this video; helped me wrap my mind around the switch's odd gui. Would you/anyone happen to know if TP-Link has addressed the VLAN hopping weakness in their latest firmware? (2022/09/30, at the time of this writing)

    • h3llknight
      h3llknight Ай бұрын

      *edit, tested it, and confirmed still exploitable.

  • Mark Himsley
    Mark Himsley 3 жыл бұрын

    Seems to be very similar to the Netgear GS108T, although the GS108T seems to have more features.
    The TP Link SG108E has very similar features and a more simple user-interface compared to the GS108T. The LAG, QOS and VLAN configuration is almost identical - including the VLAN and PVID settings being on two pages - which means it's super easy to lock yourself out of the switch. But the enhancements on the GS108T includes allowing you to set the VLAN that the management interface is on, which is one security issue you found on the SG108E.

  • marcoNLD
    marcoNLD  Жыл бұрын +1

    i got this switch with POE. works great for home use. 2 unifi AP's and poe camera's with VLAN's. great value.
    thx for the video, very helpful for the Vlan setup

  • Jim
    Jim 4 жыл бұрын +13

    I use their 8 port non-managed gigabit switch and it has been working extremely well!

    • Pratwurscht Gulasch
      Pratwurscht Gulasch  Жыл бұрын +1

      i would not even bother with unmanaged switches these days, the cost is about the same but you get so much more out of a managed switch, just saying.

  • Max
    Max 4 жыл бұрын +7

    I personally use this switch. It’s very good for the money, but the only thing that bothers me is that the management page is accessible from every VLAN.

    • Christino Lian
      Christino Lian 3 жыл бұрын

      @sitte Thanks

    • sitte
      sitte 3 жыл бұрын +4

      @Christino Lian because names come from the marketing team and they just don't know anything...

    • Christino Lian
      Christino Lian 3 жыл бұрын +4

      that is manage switch? Why the box say Unmanaged ?

  • Gary Justice
    Gary Justice 2 жыл бұрын

    Going to the way back machine for this one. I have been using your videos to get acquainted with myself pfsense. I was looking for something inexpensive but with updated firmware an got the V.4 16 port version of this switch (TL-SG1016DE). So far does ok just set it up on my laptop with static IP on the same subnet. Plugged it in switched cables from 16 port dumb switch and away we go. Backed up the config before reboot but it held config. I will be doing VLANs next. I have pfsense with 4 port Intel nic with one as WAN from Cable provider and 2nd one to LAN. Any suggestions out there on how to manage the VLANs on this sort of setup? Welcome good advice. I already read all of the replies-comments here to this video so anything new would be great! Thanks Tom for all the informative videos and to the community for their great comments!

  • Ryan Bregler
    Ryan Bregler 2 жыл бұрын

    Been using these switches for yeeaaaars for small 5 and 8 port switches (Usually just get 8 as they are like 10 bucks more than the 5) and never had an issue ever with them! Probably used a hundred of them.

  • Wiliki Kilika
    Wiliki Kilika 2 жыл бұрын +1

    Thanks for an easy to watch quick review, just what I was looking for, a managed switch to play with VLANs at home.

  • Console
    Console 3 жыл бұрын +22

    Time domain reflectometery. That's what the faulty line test is doing to determine the length of the broken/open cable. Very very cool feature to be included in the switch.
    Send a pulse down the cable, time the reflected signal and analyse the phase. A shorted cable, would be inverted. An open cable would not be.

    • Bryan Arnold
      Bryan Arnold 7 ай бұрын

      Wow. You're dropping some knowledge here. Sounds like you've worked with low voltage wiring quite a bit.

  • Mark Segal
    Mark Segal 4 жыл бұрын +124

    It seems that port 7 and 8 are "untagged" for both vlan 1 and 30. That might be the reason you can ping 192.168.1.2. Try to mark port 7 and 8 as "non-member" for vlan 1 to see what will happen.

    • Desert Garden Prepper
      Desert Garden Prepper  Жыл бұрын

      SuperWhisk so maybe keep the tp-link and see if I can flash it? I see a Zyxel 16 Port Gigabit Switch, Easy Smart Managed, Compact Rackmount, Fanless (GS1900-16) on amazon. maybe that one works out of the box? the one I ordered was the TP-Link 16 Port Gigabit Switch TL-SG116E. vlans are a little over my pay grade right now, but that's part of why I'm doing this 😀

    • Desert Garden Prepper
      Desert Garden Prepper  Жыл бұрын +1

      I just bought the 16 port version of this from amazon today for $80, to go along with my Protectli Vault FW2B to start to learn pfSense and vlans. looks like I made a mistake. is there a reasonably priced, smart switch without this feature / flaw? I don't know about vlans yet, but need my computer to be able to traverse all of the vlans, put my ioT devices on one vlan, my cameras on another vlan, and my crypto hardware on a separate vlan, and not have that crypto vlan to be accessible by any other vlan, except my one management / daily driver computer. thinking I can set firewall rules to accomplish everything, and add other security features to my network. what switch should I have bought?

    • Tony DeMatteis
      Tony DeMatteis 2 жыл бұрын +4

      @Dan Isaacson and others new to VLANs... To clarify, VLAN Trunking is not multiple "Untagged VLAN IDs" on a single port. It's, in fact, multiple "Tagged VLAN IDs" on a single port, per the IEEE 802.1Q and IEEE 802.1Q-in-Q specifications. Cisco, Juniper, Ericsson Smart (Redback) and other enterprise Layer 2 and 3 switches will not allow multiple Untagged VLAN IDs on a single port. A port configured to egress traffic "untagged" is an Access Port and can only untag traffic for a single VLAN ID. If it did, how would ingress traffic be differentiated one VLAN from another. A port can only be in Trunk or Access mode, not both at the same time. Also, a port in Trunk mode "tags" the traffic with the relative VLAN ID as it egresses the port and passes the ingress traffic on the switch fabric on the relative VLAN ID. Mikrotik RouterOS DOES ALLOW multiple Untagged VLAN IDs on a single port.

    • Harald Steindl
      Harald Steindl 2 жыл бұрын

      I would bring up the exact same argument BUT then what is the PVID good for at all?
      Anyhow, I don't see any reason why one would send out two VLANs UNTAGGED out the same port. What should the connected endpoint think?

    • Dan Isaacson
      Dan Isaacson 3 жыл бұрын +5

      Why is everyone surprised it allow multiple tagged VLANs on a single port? This is VLAN trunking and a standard and necessary feature of a managed switch. If you want to isolate the VLANs for security or other purposes make sure you don't trunk the VLANs on ports you don't want talking to both (or multiple) VLANs. Or go back and read how VLANs work again.

  • WeiserMaster3
    WeiserMaster3 4 жыл бұрын +1

    The management interface is weird though, you can't set on which VLAN it listens. So if you would have it between your router and modem for VLAN tagging, and have it pull its IP from DHCP, it could actually get a internet routable IP adress from your ISP.
    Or did I miss something obvious?
    Either way, I just set it to static. It's reachable without problems over HTTP/S, but the ICMP based monitoring is a bit flakey..
    But for 30-40 bucks a no brainer. Works great.

  • Leester
    Leester 4 жыл бұрын

    I've always had excellent results with TP-link. I"m extremely paranoid so I don't buy anything from them that runs firmware/software unless I replace it with something like DD-WRT.

  • Linux Pc4Me
    Linux Pc4Me 3 жыл бұрын

    Great video! Thanks so much for your clear and concise tutorials. I do have a question regarding the VLAN 30 settings for the AP.
    In this demonstration you show the access point as a tagged port (the AP created its own VLAN tag). This puts it in the VLAN 30 realm. What if I added another VLAN to the same AP (call it VLAN40). When I create the next VLAN (VLAN 40) in TP-Link switch, and I used port 5 for this VLAN, would I also add in port 4 again as a Tagged port to include the same access point with it's internal vlan setting of vlan 40?

    • Gabriel Porto
      Gabriel Porto 9 ай бұрын

      Not sure if I got your question right. But if you're asking how to setup 2+ Vlans on the AP since there is only 1 cable connected to the switch, the answer is that the switch port has to be untagged so it can work with all the Vlan tags passing through it. I'm not 100% sure, but I think that's about it.

    • Diego Loiola
      Diego Loiola  Жыл бұрын

      In this case, the vlan creation process started in pfsense he just named it in switch and unifi. It is enough that in the router then the switch and the access point have the tags for the vlans that will work properly. Well, that's how I understood it after a few days of researching the forums.

  • Marc Schweiz
    Marc Schweiz 5 ай бұрын

    So informative and the explanations were clear. Thank you!

  • hottroddinn
    hottroddinn 8 ай бұрын

    Many, many great videos, Lawrence. I think the last combination video to do is have this switch work ESXi where the VLANs are configured on the switch and the firewall is giving out IPs from the DHCP server running on it and the VMs getting them. That's going to be the ultimate video **chef's kiss**

  • Tim Kosem
    Tim Kosem 2 жыл бұрын

    Oh, man, my Netgear ProSafe "Smart Managed" GS116Ev2 has the same issue with the web management. It runs straight HTTP like the TP Link you reviewed; and I was able to connect to the web console from a different VLAN than the one hosting the switch's IP address like you did by just mapping a static IP address in the same range as the switch. Doh. For the moment I guess I'll have to make sure that my admin password (with no user id, BTW), is as complex as I can make it. Thanks for pointing out this deficiency in SOHO VLAN switches!

  • Chris K
    Chris K 4 жыл бұрын

    WARNING: tp-link now sells new models(TL-SG108E) unmanaged. Which really just means you need to factory reset it to get it working. But it does seem strange that they now have it all over the new boxes...

  • Buccaneer
    Buccaneer 2 жыл бұрын +2

    Tom that ‘odd’ cable test says ‘cable fault’. It is there to tell you the distance to a cable fault = broken cable. Gives you an indication on where to examine your walls/cable trays if you loose connection. Like when someone two rooms away decided to drill a whole right where there is a hidden cable channel. behind the plaster wall.

  • Sean Chambers
    Sean Chambers  Жыл бұрын +1

    Thank you for the clear example with hardware. This is the first video where I had an ah-hah moment with us tagged/tagged options as I have this switch and was going to start to configure for vlan traffic

  • RipVan Winkle
    RipVan Winkle 4 жыл бұрын +4

    VLAN1 is your default vlan and is enabled when you first create your vlans on the switch. You cannot delete VLAN1 but you can disable it (for security reasons) Works similar to cisco. If you've worked with cisco switches, its not an odd behavior.
    What is odd though, is that there's no security settings to access the management port.
    Good breakdown of the switch and thanks for the demo.

    • Wahinies
      Wahinies 2 жыл бұрын

      The TL-SG1024PE I had configured did not allow removing vlan1 membership of any ports. When consulted, tplink said this was an antilockout feature.

    • RipVan Winkle
      RipVan Winkle 2 жыл бұрын +1

      @DistantComputer Glad you found it.

    • RipVan Winkle
      RipVan Winkle 2 жыл бұрын

      @DistantComputer Have you tried creating other vlans? For ex: VLAN10 or any other number? Make the new vlan you created the default vlan. Remove vlan1 from any prots. Then it's basically disabled.

  • Hannes O'Grady
    Hannes O'Grady 4 жыл бұрын +3

    FYI. On the cable test. If your plugged in LAN Cable that has any broken strands then it will show up under cable fault.
    It tells you how far down the cable length you will find the broken aria so you can fix it.
    That is why it does not show under the cable fault when a working cable is plugged in.

    • Pankaj Sharma
      Pankaj Sharma 3 жыл бұрын

      Finally someone got the logic behind it.

  • Tim S
    Tim S 4 жыл бұрын +6

    Thanks L-man! This is exactly what I was looking for to separate my IOT and guest networks from my main lan.

    • William Lau
      William Lau 2 жыл бұрын +1

      Ya, good features and effective

  • mrlithium
    mrlithium 4 жыл бұрын

    Awesome. ive been looking for something managed and very cheap. Great that it has LAGG and VLAN and QOS. I will be buying one of these. To use between my PFSense and FreeNAS boxes and my desktop. That way all 3 can have 2 connections, and still have 2 ports for the rest of my network

    • mrlithium
      mrlithium 4 жыл бұрын

      Also, Subbed. Nice to see a fellow networking geek. You really seem to know your stuff

  • Ozzie O
    Ozzie O 2 жыл бұрын

    Hey.. this video was soo helpful.. thanks.. please note that port 8 was still a member of vlan 1.. I removed it and wasnt able to ping other vlans.

  • urzu181
    urzu181 2 жыл бұрын

    I've read on TP-Link site that this switch uses static link aggregation and not LACP.. So what corresponding setting should be used in FreeNAS link aggregation (Load Balance or Round Robin) and will the performance be worse than LACP..??
    Also it would be helpful if you could make a video showing link aggregation using this switch with FreeNAS.. Thanks..

  • Pinoy Installer
    Pinoy Installer 4 жыл бұрын

    Hi sir I am Lhondel from Philippines, I would to ask because I need clarifications regarding for that model especially LAG.
    Im wondering what type of LAG support the TL-SG108E has. The spec sheet / product data sheet only sets "Link Aggregation" without specifying further informations.
    1.Does it support lacp?
    2. It is possible to combine multiple physical links dynamically as a logical link, and thus this logical link will have higher bandwidth , higher reliability and at the same time for redundancy purposes?
    Here we take an example
    I want to connect between two TP-Link switches and so on.
    First Switch -2 uplink port aggregate (e.g port 1 and port 2)
    to
    Second switch number using 6 and 8 port.
    Hoping for your response sir if it is possible because I emailed already in tplink and they say not supported and I'm wondering because as I saw your video you can create 2 lag group.
    And I suggest also sir that you will make a video for this :)
    By the way here is the link given by the tplink support team.
    www.tp-link.com/us/faq-991.html that scenario I want to achieve.
    Thank you in advance.

  • screenieman
    screenieman  Жыл бұрын

    I have one and it runs really well and stable. Features I use - VLAN, Static LAGG.

  • SpazHead
    SpazHead 4 жыл бұрын +16

    Thanks Lawrence for posting these videos, this one help me understand VLAN's, and tagged and untagged. Now I have my WIFI on a different VLAN and my Security system on another VLAN.

  • Graham Houston
    Graham Houston 2 жыл бұрын

    the issue with 192.168.1.9 being able to ping the man interface is a feature called untagged management found in a lot of switches.. most only work in the first port.

  • Wahinies
    Wahinies 2 жыл бұрын +1

    I am generally happy with these but I had gotten the 24-port PoE model for a project and found a couple of disturbing things. There was not anywhere to change management VLAN or default from PVID1 and to top it off the switch would allow access from any VLAN *and* someone had found that ALL MANAGEMENT TRAFFIC WAS BROADCASTED ... in all VLANs (wtf?). Ive yet to verify that one but if securing management interface is important, look at equivalent Zyxel or Netgear switches. Then it would not accept alphanumeric characters into login passwords (I hate it when devices don't allow that)

  • alphabanks
    alphabanks 4 жыл бұрын +2

    Great video I have been using one of these for a while now so far so good. They also make a poe version that I plan on buying.

  • Гуванч Овезов
    Гуванч Овезов 5 ай бұрын

    Thanks, dude! Successfully configured 2 WLAN & LAN for pfsense with just two NICs.

  • Tom Major
    Tom Major 4 жыл бұрын +6

    I would think that if you un-assign ports 7 & 8 from the default VLAN (1) you might not be able to connect to that network with a static IP address from ports 7 & 8. Unless of course your static IP address is on the 30 subnet that last comment does not apply.

    • Sam Reed
      Sam Reed 4 жыл бұрын +4

      I was thinking the same thing. Seems that the ports 7 and 8 are on both untagged vlans. The screen at 16:00 shows ports 7 and 8 as untagged on both vlans.

  • Jeff Cloninger
    Jeff Cloninger 4 жыл бұрын

    No kidding 2 weeks ago I set up my first home pfSense box with this switch and my first unifi ap's. You're running about a week behind when i need you lately! Thanks much though, love the videos.

  • Matthew Bennett
    Matthew Bennett 3 жыл бұрын

    Probably a stupid question but if your having multiple dhcp pools for vlans. What IP addresses should you use for the AP, would they come under management VLANS? So for example if I had 192.168.10.0 network for management would I set IP address on ap part of that network.

  • Aalap Shah
    Aalap Shah  Жыл бұрын

    Great video, I am experimenting with networking and have collected a mix of devices, this one looks good for its price.

  • FearlessKnight
    FearlessKnight 3 ай бұрын +1

    Pretty helpful, still kinda confusing the way the GUI is represented. I always thought "Tagged" Vlans are for Vlans you want specific traffic passed through (Vlan30/40/50), whereas "Untagged" is basically any traffic being passed through. ....Guess not. :/ I have 2 of these. 1 connected to my Palo Alto FW and the other in my living room.

    • David McCombs
      David McCombs 10 күн бұрын

      Easy way to remember, tagged means it carries the VLAN ID to the next hop. Untagged means it strips the ID so it's just traffic on the subnet.

  • DialM4Microcontrollr
    DialM4Microcontrollr 4 жыл бұрын +4

    Your comment near the end about not using $39 switches for Enterprise. COMPLETELY AGREE, this is a good switch for home, a home virtual lab where you use vlans, etc. Or for traveling tech like me, something to throw in the car for an emergency when you need vlans.

    • mdd1963
      mdd1963 4 жыл бұрын +2

      I've got two 16 port GbE switches from TP-Link connecting a few offices 40 feet apart, about $80-$85 each.....; they've been working just great for 3-4 years now..... I suppose I *could* have used $800 Cisco switches, and gotten the same 110 MB/sec transfers from one office to another... What a quandary!

    • Dylan Cruz
      Dylan Cruz 4 жыл бұрын +1

      completely agree PV. I have 4 cheap Gigibit switches about $40 each from Netgear and I've been using them for years without any issue whatsoever!

    • P V
      P V 4 жыл бұрын +2

      DialM4Microcontrollr how do YOU know how much better the expensive stuff is?
      Are you an electrical or electronic engineer?
      Have you studied the internals of both expensive and cheap brands??
      Have you tested the cheap stuff YOURSELF?
      Don’t you know that most electronics are made by the SAME Chinese factories??
      Don’t you know that longevity of electronics comes down to heat issues or low quality capacitors??
      (cheap brand name stuff run cooler and use quality caps!).
      I know all above and have tested the cheap (but brand name) stuff and NONE (zero) have failed in the last 10 years I have used or deployed them.
      Neeext fanboi please!

    • Wiebo Westerhof
      Wiebo Westerhof 4 жыл бұрын

      Agreed, it can be extremely useful if a client has a single network port and (with permission of their IT staff) you can just match your VLAN on this thing to get yourself on their network without using the guest network to get on VPN to get back into their network to do a job, with the guest network having zero bandwidth as it is at the bottom of the food chain haha. I've also used some variants of mini-router/APs + a dumb switch that you can power off USB. This can be used as a client to a hotel network that has the '1 user' restriction, at least in the room.

  • Keith Petrino
    Keith Petrino 2 жыл бұрын +1

    It's my understanding that LAG only reduces congestion by allowing for more simultaneous transmissions. It does not increase speed.

  • PHT
    PHT 3 жыл бұрын

    I have this same switch. It wiped/factory reseted itself entirely a couple of times over the last 2 years.

  • Bu
    Bu 24 күн бұрын

    Rookie question. If you set a static IP on the switch and then also do a static DHCP mapping in pfSense, will that cause any issues?

  • James Maine
    James Maine 4 жыл бұрын +6

    Love your videos..New to VLANS and your videos give me ahead start...Was able to get my SSID's on different VLANS :)

  • Lewis Balentine
    Lewis Balentine 4 жыл бұрын

    Would have been more interesting if you had verified the actual through put and total bandwidth of the switch as well ..
    Why? I have had some of these small switches that aggregated 1GB connection overrun the baseboards capability.

  • Run With Daisy
    Run With Daisy 2 жыл бұрын

    Hi, I really appreciate your videos. Do you have recommendations on high quality switches for a large size building with over 90 devices connected to (wired and wireless)?

  • Diego Loiola
    Diego Loiola  Жыл бұрын

    Congratulations on the video.
    In case if I want to make two trunk ports I could? One coming from my pfsense and the other going to another manageable switch?

  • Bobby Lockwood
    Bobby Lockwood 4 жыл бұрын

    It's good, but I don't see value in buying new. I picked up a very similar 24 port (actually two) for the price of a new one and has waaay more features, 802.3ad trunking, VLAN blocking admin ports and SFP (and tons of other stuff). System refurbish establishments are what I'm sticking to for sure.

  • Gillian Seed
    Gillian Seed 10 ай бұрын

    I don't think being able to tell where a cable is broken is a weird feature, cisco has this feature as well.

  • James Knott
    James Knott 2 жыл бұрын

    Some TP-Link managed switches have problems with VLANs. Multicasts can leak from VLAN 1 to other VLANs. I have the same problem with my TP-Link TL-WA901N access point.

  • aguyandhiscomputer
    aguyandhiscomputer 4 жыл бұрын +7

    Love how you open the cases. Something I never do but should try sometime.

  • Slaps
    Slaps 4 жыл бұрын +1

    Nice security discovery at the end there. Worrying yes, I guess but it is ok for a home network.

  • Paul Connelly
    Paul Connelly  Жыл бұрын

    Very nice video! Almost perfect for my needs.😎

  • KuyaVenz InfoVlog
    KuyaVenz InfoVlog  Жыл бұрын

    great tutorial!
    what if i will use 3 VLANS IN ONE ACCESS POINT in one port via multiple ssid with different Vlan
    LIKE
    1. Nativevlan(tplink er605 standalone)
    2. pfsense vlan30
    3. ppoe server vlan40
    is it possible?

  • rabbitcreative
    rabbitcreative 3 жыл бұрын +1

    Love that "Rage against the virtual machine" sticker. :)
    My 10-year-old Dell 610 whomps on almost every hosted VM I've played with.

  • keith malson
    keith malson 8 ай бұрын +2

    One note of caution. If switch is reset the management ip defaults to dhcp and you need to snoop around your network to find it.

    • Ayham Alhalaibi
      Ayham Alhalaibi 3 ай бұрын +1

      Take its mac address and manually assign it an ip then reboot it and done... hope this helps

  • Demarey Baker
    Demarey Baker 6 ай бұрын

    The NETGEAR GS308E VLAN config works the same way like this. I tried everywhere and could not figure it out. This video was very helpful.

  • Clint Martin
    Clint Martin  Жыл бұрын +1

    I know this is an old video, but I enjoyed watching it. Primo content. Thank you sir.

  • Centi Zen
    Centi Zen 4 жыл бұрын

    I like these cheap little guys but I did have one of them randomly factory reset itself the other day which was a huge pain in the ass to track down as the source of the issue in the rube-goldberg esque internet connection we have for a site

  • Jeff Higgins
    Jeff Higgins 4 жыл бұрын +13

    I have the Netgear GS108Tv2, the hardware is almost identical, it definitly uses the exact same case, but it does offer a LOT more features in the software, a lot of things you will find on an enterprise switch, things like LLDP, SNMP, STP, 802.1x, ACLs, etc., it does cost a little more though, $70 on Amazon, so it's up to you if you want to spend the extra $30 for more features.
    I do kinda have it running in an enterprise environment, but as an R&D switch and not as the main switch, it's been running reliably for many years now.

    • 3waver
      3waver 4 жыл бұрын

      Does the Netgear support HTTPS?

    • B Good
      B Good 4 жыл бұрын

      I have the same setup. The GS108T and then the 110 PoE version for the UniFi APs. I had a TP-Link one and it was not close to the quality of the Netgear.

    • koobydotnet
      koobydotnet 4 жыл бұрын

      Moreover, I had Netgear support check the firmware update logs and there's no mention of this issue.

    • koobydotnet
      koobydotnet 4 жыл бұрын +1

      I have two of these, the v1 and v2. Every 3 months, VLANs would stop being tagged which is extremely frustrating. I contacted support and they recommended updating the firmware but seeing as it takes 3 months for the issue to occur again, I cannot be bothered. Maybe I can try updating and set up a test bed but I just need my VLAN tags to work because if I am not home and I am trying to access something remotely to which the bug occurs, it sucks.
      I have a GS724T though and it's practically flawless.

    • Jeff Higgins
      Jeff Higgins 4 жыл бұрын +1

      I just double checked and yes you can.

  • Quentin Smith
    Quentin Smith 3 жыл бұрын

    I wonder how this switch compares to the Netgear GS108T. I think the Netgear has a few more features.

  • mat taylor
    mat taylor 4 жыл бұрын +3

    Brilliant video ... you unpicked the weird ui that was confusing the hell out of me.

  • Putu Dipayana
    Putu Dipayana 2 жыл бұрын

    the cable fault distance would help to find broken cable (based on the length where it ended)

  • Eric Borduas
    Eric Borduas 2 жыл бұрын

    Did you try rebooting the switch? Perhaps the VLAN hopping was due to caching of the MAC address.

  • The Weekend Warrior
    The Weekend Warrior 2 жыл бұрын

    I guess it starts getting an IP from DHCP and not a manual IP which you seem to have gotten(?), at least mines did start with DHCP (and I have a couple and love them). Maybe it "reverts" to 192.168.0.1 if there's nothing on the network around it, could that be?

  • Jose Valenzuela
    Jose Valenzuela  Жыл бұрын

    I know this is old, so I am going to apologize beforehand about bringing this up again.
    I tried setting the VLANs just as you mentioned here (I had one of these with hardware V.4 used as a dumb switch) but the moment I set port 1 (from my PFSense) to VLAN 55 Tagged and Port 8 to VLAN 55 Untagged (that's my Wyze cam outdoor hub) every VLAN stopped working on my Aruba AP 22s, they all lost connection to the internet.
    I left all other port as "Not Member" just to test that port 8 would assign an IP to the Wyze hub, but that never took.
    Any suggestions? I'm completely lost here.

  • Scott Singh
    Scott Singh 2 жыл бұрын

    Thanks mate! the video is way less complex than all other out there.

  • Subliminal Chaos
    Subliminal Chaos 4 жыл бұрын +3

    Thank you for the video! You give very good instructions and are easy to understand. I have brain damage and brain cancer and could follow your instructions perfectly. Again, thank you!

  • Jon Brabender
    Jon Brabender  Жыл бұрын +1

    I use these switches...they work great for me. But regarding your "VLAN hopping" comment at 24:22...you have the switch misconfigured. Untagged ports should ONLY be in 1x VLAN and under "Untagged Ports" column (and NOT in Tagged Ports column). Tagged ports should ONLY show up in the "Tagged Ports" column (possibly multiple times for each VLAN the trunk is carrying). For "UntaggedPorts", the PVID MUST match the VLAN of that port (There is no ambiguity as untagged ports only should be configured with 1x VLAN). PVID determines what VLAN tag to associate with untagged port traffic. For trunks, the PVID still has to be configured...the reality is no UNTAGGED traffic should exist on a trunk (unless somebody messed up)...but have to put something...in my case, I tag it with an unused/unrouted VLAN.
    I agree the UI could be improved...but it is what it is.
    I actually have very similar configuration with pfSense, tp-link switches and unifi-ap...works flawlessly regarding "who can get to what".

    • Aaron Freedman
      Aaron Freedman  Жыл бұрын

      Sorry for my ignorance, just a noob trying to digest your statement above - for untagged ports (let's say a hardwired PC) are you saying that it should be defined as untagged on VLAN 1 (system-vlan) only, with the PVID set to the correct VLAN assigned for it? Rather than, like in this video, it being untagged on the VLAN it's assigned to + the PVID set to the VLAN it's assigned to?

  • Mike Broom
    Mike Broom  Жыл бұрын

    Just picked the 4xPoE version up for a wireless bridge to detached garage with AC LR +2 PoE cameras. Thanks!

  • Hei Frozenheart
    Hei Frozenheart 3 ай бұрын

    this was super helpful, thanks!

  • Shafei Sharif
    Shafei Sharif  Жыл бұрын

    I have learnt so much from you. Thank you

  • JP Eagles and Katz
    JP Eagles and Katz 9 ай бұрын

    Seems they totally removed the running config/save config settings from later versions of this switch.. It is gone.. Got me into a lot of trouble at times... Having to actually completely reset because of locking myself out of vlan.. last known/saving is gone.

  • faisal ali
    faisal ali 3 жыл бұрын +2

    TP-Link products are really awesome

  • Brian Gregory
    Brian Gregory 3 жыл бұрын

    Quite similar to Netgear GS308E.
    I don't understand why you left port 7 & 8 as members of VLAN 1 set?
    I see that the device might be able to figure out for itself that VLAN 1 shouldn't go to ports 7 & 8 from the pvid value but I don't think you can assume that. It might, for instance, send tagged VLAN 1 to ports 7 & 8.

  • OldM8Greg
    OldM8Greg 4 жыл бұрын

    great video, might pick one up to play around with vlans and get to know them

  • Matt Bunce
    Matt Bunce 4 жыл бұрын +5

    I use a similar Netgear VLAN capable switch in conjunction with a SINGLE PORT pfSense server. I then use the following VLAN assignment:
    VLAN1 (native): LAN
    VLAN2: WAN
    VLAN3: Private
    VLAN4: Public (untrusted devices)
    VLAN5: VOIP (QOS Priority)
    There will obviously be some bottlenecks, but with my 50mbps WAN connection it's not something worth worrying about and it can save you buying an additional NIC for the server.

    • S Patt
      S Patt 4 жыл бұрын

      Thanks, what's the model number?

  • charlie brownau
    charlie brownau 4 жыл бұрын

    Same that doesn't have 1 port as POE it would just justify the AUD$60ish price otherwise its better just to get a managed 16 port in the AUD$95-145 range

  • usman saleem
    usman saleem 2 жыл бұрын

    Sir please make a video on LoadBalancing with vlan
    Example
    ISP 2 vlan in pfsense in 1 port and LoadBalancing

  • Michael Ziminski
    Michael Ziminski 3 жыл бұрын

    I thought I did the same exact step as you, but when I plug my PC into port 8, it fails to get an IP address. I have everything setup correctly, the same as you, with the exception of my VLAN IP, it's .50 instead of .30, .30 is actually my regular lan. I also have a wifi network that's supposed to be using VLAN 50 and my phone is also failing to get an IP address.

  • Greylegato
    Greylegato  Жыл бұрын

    Thank you, this really helped me make a decision on what to do in my home network.

  • Jim
    Jim 4 жыл бұрын

    I just purchased this switch and it'll be in on Monday, but my question is, I'm going to be running pfSense, I was wondering if you could use this switch, along with a VLAN to bond two WAN connections together.

  • David O
    David O 4 жыл бұрын +13

    White glove service, my favorite. Thanks for the break down, I was looking at this device.

  • Simon Cloutier
    Simon Cloutier 2 жыл бұрын +1

    you might want to revisit the vulnerability portion, it seems like a firmware fix was released to unassign vlan 1 to all ports.. www.tp-link.com/en/support/download/tl-sg105e/v3/#Firmware and www.tp-link.com/en/download/TL-SG108E_V3.html#Firmware depending on the version.

    • Simon Cloutier
      Simon Cloutier  Жыл бұрын +1

      @Abhishek Kumar how is your router configured network wise ? and are you putting the ports on another vlan untagged or tagged ?

    • Abhishek Kumar
      Abhishek Kumar  Жыл бұрын

      If I set all ports to Not member for VLAN Id 1 then all my devices lose the network and internet.

  • thepiecesfit
    thepiecesfit 2 ай бұрын

    Good switch, but surprised it doesn't have SSL for management.

  • myozone
    myozone 4 жыл бұрын

    The D-Link DGS-1100-08P also looks good