EdgeRouter to ToughSwitch Trunk and Network Design

Hello,

I am impementing a new and improved network before I go back to school in September... So I need you network design guru's help with this

I spent some time trying to configure VLANs between ERPoE-5 and and TS5-PoE... and I can not figure out what I am doing wrong. Hopefully this is something easy to fix.

I am used to Cisco, and something here just isn't adding up to me.

I'll post back later with my configs if required... but I think the answer is pretty obvious... just not to me:/

Here is what I was thinking:

VLANs

VLAN 254 - Management

VLAN 30 - Family farm

VLAN 50 - Friend

ERPoE-5

eth0 - ISP public IPs (2x)

eth1 - 10.95.254.254 is the interface address (In the management VLAN) I will have OpenVPN or IPsec on here too.

  eth1.254 - 10.95.254.253 is the VLAN interface address (correct me if I am wrong in thinking/doing this)

  eth1.30 - Customer 1 (Family Farm) -  Address 10.95.30.254

  eth1.50 - Customer 2 (Friend) - Address 10.95.50.254... I'd like to use this VLAN to send my second public IP to my friend... suggestions are welcome.

TS5-PoE

This thing is giving me a lot of grief getting trunks rolling... I have it set to address 10.95.254.252.

Port1 - Trunk connected to ER eth1 over a wireless bridge. 

I cannot ping any of the VLAN interfaces from this thing (via SSH)... Is a trunk not what I am looking for to bring in all of the VLANs? Do I have to tag each VLAN on this port with the check boxes? Does it follow dot1q?

Port 2 - Family Farm - Trunk through wireless bridge and to ES24.

Port 3 - Friend - Trunk through wireless bridge to customer provided "Wireless Router". I would really like him to be given my second unused public IP via DHCP. This is second to my post here though.

Note

I have a version 1 network in production very similar to this, but all on one subnet... Version 2 here is basically just seperating everything up so I can manage it with VLANs, and have true seperation to my friend... and eventually QoS.

I have the equipment on my desk now... So configuring this while I have it in front of me would be much preferred.

Any help with this would be appreciated.