OK - I know one or two people have got these (or similar) Vigor ADSL routers... Can you help me before I take an angle grinder to the bastard thing.
I've been playing with it for months - now trying to actually switch it in to my network. It seems to have a number of edge case bugs which is making me wonder if it's best to bin it and buy something else.
Bug 1- DHCP server doesn't work on tagged VLANS - Draytek tried and failed to patch this. I have worked around by using linux server as main DHCPd and my TP-Link WIFI box as guest-DHCPd in case linux server fails.
Bug 2- If using IP address mapping, the public side IP does not seem to be pingable from the LAN side. Firewall disabled. That's a show stopper. Public (external) mapped IP *is* pingable from WAN side.
Bug 3- While the device remains pingable, the web interface randomly becomes unresponsive, needing a reboot to fix.
I have backed up the config and am prepared to try ones more from a factory reset and reloaded known good firmware.
=================== So - how is the "right way" to set this up, given my network layout:
LAN1 - 10.0.0.0/24 - Internal, everything internal here (except LAN4) LAN2 - 81.2.78.40/29 - Main public IP range LAN3 - 81.2.109.104/30 - 2nd Public IP range LAN4 - 10.1.0.0/24 - Guest WIFI
WAN - ADSL uplink
I have a switched network. Currently I mix LAN1,2,3 onto a single VLAN and my linux servers present a LAN1 and LAN2 IP on the same VLAN/port. One linux server acts as NAT gateway.
I tried an approach to only use LAN1 IPs on my servers and Vigor IP mapping/DMZ to map LAN2/3 IPs down to LAN1 IPs, eg:
81.2.78.41 -> 10.0.0.14 81.2.78.42 -> 10.0.0.10etc
However, Bug 2 apparently means I cannot ping 81.2.78.41 from inside LAN1.
Next tactic is to either have the slightly weird setup I have now (LAN1/2/3 all on single flat VLAN) or to try to VLAN it properly.
What did you do (if you have a Vigor and a public IP netblock?
Is there a better router that is actually consistent? Getting a bit narked with the consumer level gear but cannot afford high end pro gear).
(Yeah, I know, linux - been down that road - difficult to build a powerful linux server that is bombproof - my last attempt eventually developed faults and took out the net - trying to build core network with hardware this time).
Cheers,
Tim