I've seen a couple of posts with similar problems, but I'm looking to understand the problem a bit deeper.
I have MS120 switches, MR44 APs and two SSIDs (guest and internal).
I would like to tag guest with vlan 10 and internal with vlan 20 but the problem is that vlan 20 is also the native vlan on the trunk port between swiches and APs, so the SSID internal won't receive IP addresses if I tag it. If I don't tag it, it works.
So the questions are:
1. Is there a way to tag vlan 20 if I only have those two vlans and vlan 20 is used as native on the network?
2. If I don't tag vlan 20 I see that wireless clients have "native" instead of the vlan number in the column "current vlan" under connected devices. Since vlan 20 is also used for wired clients and native vlan, would that mean the wireless clients can communicate with wired clients on vlan 20? That the wireless clients would still be in vlan 20 because it is the native vlan? Does the native vlan tag them then?
3. Are there any security issues or other problems by only tagging the SSID guest and not internal?
4. When I go to the summary page on either switches or APs, under "LAN IP" and click on the pencil, I can set a VLAN under DHCP. What does this do?