Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Locked out after adding VLAN

    Scheduled Pinned Locked Moved L2/Switching/VLANs
    3 Posts 3 Posters 493 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      Treefrog
      last edited by Treefrog

      Interfaces: WAN (igb0) + LAN (igb1)

      My lan firewall rules are simple:

      1. anti-lockout rule enabled and working
      2. pfblocker
      3. allow Lan to any

      Then I create my first VLAN:
      Parent interface: igb1 - lan
      VLAN tag 10
      Priority 0

      Then, I go into interface assignments:
      Change interface Lan network port
      FROM "igb1"
      TO "VLAN 10 on igb1 - lan"
      Save

      I am locked out and have to use the console to revert the change.
      Thinking maybe I didnt have my switch correctly setup to tag traffic as vlan 10, I plugged my computer directly into igb1 and it still did not work.

      Do firewall rules have to be recreated after assigning a vlan to an interface network port?

      V johnpozJ 2 Replies Last reply Reply Quote 0
      • V
        viragomann @Treefrog
        last edited by

        @treefrog said in Locked out after adding VLAN:

        Then, I go into interface assignments:
        Change interface Lan network port
        FROM "igb1"
        TO "VLAN 10 on igb1 - lan"
        Save
        I plugged my computer directly into igb1 and it still did not work.

        You have to configure the computers NIC for VLAN 10. Did you?

        1 Reply Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator @Treefrog
          last edited by

          @treefrog

          Assign the vlan to an interface, create your firewall rules. Then you can move lan to the interface.

          But yeah @viragomann is correct if you plugged the pc directly into the pfsense interface you would had to set the PC to do tagging?

          Out of curiosity why do you want your lan tagged?

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.11 | Lab VMs 2.8, 24.11

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.