Set Up VLANs with Tomato and a Cisco Small Business Switch

Mark Berry January 6, 2017

I blogged five years ago about setting up guest wireless with Tomato. For that, I just plugged a separate switch into a router port dedicated to the wireless VLAN. Worked great. But now I need separate VLANs for access points, phones, and cameras connected one 24-port PoE switch, i.e. one router port must pass traffic for multiple VLANs. Here’s how I set that up.


Tomato Shibby Ports Backward on E2000

Mark Berry April 27, 2016

Today I converted from a Toastman build of Tomato router firmware to the latest Shibby build (136) on the Linksys E2000. I used a spare E2000 device so I could copy configuration values (mostly manually). Then I carefully unplugged one cable at a time from the Toastman router and plugged them in to the same ports on the Shibby router. I couldn’t even ping the router!


Slow File Transfer over Cisco VPN with Tomato QoS

Mark Berry March 5, 2015

I recently upgraded my Linksys E2000 router to Tomato Firmware v1.28.7507 MIPSR2Toastman-RT K26 VLAN-VPN. This includes quite a few default QoS rules.

Today I connected to a customer network using Cisco AnyConnect VPN software, then used Windows Explorer to copy an 40MB file over the VPN. The transfer was extremely slow, averaging under 8 KB/second, which would take over an hour to transfer 40MB.


Find and Block a Rogue WiFi Device

Mark Berry July 14, 2014

I manage a small network that uses a router running Tomato firmware to host a guest wireless network on separate VLAN (setup guide). The modest 3000/512 DSL connection is easy to overload but after a recent speed complaint, I started noticing some odd traffic.


Configure a WDS Bridge on a Tomato Guest VLAN

Mark Berry March 24, 2012

I’ve been happily using my Tomato router with a guest wireless VLAN isolated from my main wired LAN. I described the setup here. Now, I want to bridge a second router using the Wireless Distribution System (WDS). Setting up a Netgear WGT624v3 as the bridged router was a challenge in itself, so I wrote that up here. But once I got bridge mode working, I was somewhat alarmed to find that the bridged router was getting IP addresses from the main (supposedly secure, wired) LAN, not from the wireless VLAN, even though it was connected wirelessly! Especially considering that bridged mode on the Netgear only works with WEP security, I definitely needed to get the bridged router off the main VLAN and onto the guest wireless VLAN.


Use a Netgear WGT624v3 as a Bridge

Mark Berry March 24, 2012

There are several articles and lots of confusion on this topic out there. Here is what worked for me.

First, let’s clarify terms.


Set Up VLAN and Site-to-Site VPN with Tomato

Mark Berry November 14, 2011

I wrote recently about setting up guest wireless with the Tomato router firmware. I also needed to be able to use site-to-site OpenVPN between two routers running Tomato. I’m using a “Toastman” build that includes both VLAN and VPN functionality, but how can I use them at the same time?


Set Up Guest Wireless with Tomato

Mark Berry November 4, 2011

I’ve been learning Tomato router firmware. This open-source firmware can enhance a low-end wireless router with some pretty advanced features.

One of my goals was to set up my wireless for guest-only access, i.e. not connected to my internal LAN (which are all hard-wired connections). Here’s one way to do that.



Welcome to MCB Systems!

MCB Systems is a San Diego-based provider of software and information technology services.

Our software services include customization and programming to make software work for you.

Our proactive I.T. services help businesses control costs by providing a fixed monthly bill for routine I.T. services.

We take a consulting approach that listens first and provides solutions tailored to your business.

Contact MCB Systems today to discuss your technology needs!

Copyright © 2017 MCB Systems. All rights reserved.
Terms of Use - Privacy Policy
Created in WordPress using the Afterburner theme by RocketTheme.