Help with homelab setup?
-
@travelmore Not sure what you mean by "set it as the default vlan and also vlan 20", vlan20 will be the default vlan on that port and the only vlan on that port. If that's what you meant, yes, the above is correct.
I'm assuming port 4 is a trunk port and you have it tagged with vlan20, correct? You would leave it at vlan1 as pvid so your untagged lan will still work.
As far as internet, the vlan20 subnet only needs to be a /30 since it will only connect to the wan of the lab router. So leave it at .1, make it a /30 if it isn't, and set the lab wan to static with the .2/30.
That will give you internet to the lab. -
@travelmore Please mask this info before posting as below.
-
@nollipfsense Gah, thank you. Sorry usually I mask most things (never know what should be masked and what shouldnt). I completely forgot to even check before uploading the pic to see if i should have masked it.
-
@jarhead sorry for the unclear statement regarding "set it as the default vlan and also vlan 20". You cleared my question about that when you stated "vlan20 will be the default vlan on that port and the only vlan on that port." Originally, I was thinking the lab port (8) would want the default (vlan1) and the lab port (vlan20) on the port. Not just vlan20.
Below is a current picture of the settings for my Netgear. Port 8 has a laptop plugged in for the lab environment. Currently, from that laptop on port 8 I can ping 192.168.20.1 but I get an ip for my laptop of 192.168.0.x. Even after unplugging the cat5 from the laptop and plugging it back in i still get an ip of 192.168.0.x. That confuses me because I believe the switch is setup correctly for that port based on the picture below. On the Netgear port, 4 is the PF Sense Lan.
Here is the PF sense interface general config settings. I believe these are setup properly as well.
I am new to networking so from what I understand the 192.168.20.1 ip shown below is the 'vlan20 router ip'.
I think it might have something to do w/PF sense but I am not sure. Here is a pic below of the rules I have for the vlan (not sure if they are setup properly).
Not sure what other pics of the PF Sense box you may need. I am trying to be careful setting this up so i don't botch my home network.
-
@travelmore You have port 8 tagged with vlan 20. Should be untagged.
Set the pvid of port 8 to 20. -
@jarhead Thanks. I have made those changes (see below). I think that is correct.
Even w/those settings applied above my laptop still gets a 192.168.0.x ip. I even checked the ipv4 network settings (pic below) set it to a different ip all together, then cleared it to be normal and obtain address automatically again that still didnt work. I even unplugged the network cable a handful of times and it still gives a 192.168.0.x ip.
Not sure what im doing wrong or what i need to look at next.
I verified I can still ping 192.168.20.1 ip.
-
@travelmore Show me the pfSense Interfaces/vlans page.
-
@jarhead here you go. Please let me know if you need any other settings pics.
-
@travelmore
Everything looks good.
Are you sure you're plugging into the correct port? -
@jarhead Thanks. Good catch, I went and looked and sure enough, it was plugged into port 7 port 8 was right below it. Once I plugged it into port 8 it worked. Pic below is the settings after plugging it into port 8.
I do have some questions and I am a noob to networking do these might be silly but I just want to make sure I'm understand things correctly.
-
From my understanding, w/this new vlan in place on port 8, in a sense, its like having a separate line from the ISP for the internet in a sense right?
(where I can test and run whatever I want w/out it affecting anything on my actual home network) -
Why is IPV6 is showing? (I dont think its enabled anywhere)
-
Is it okay for me to setup a new PF Sense box w/DHCP and a new DNS/ pihole on this 192.168.20.1 network and APs and test things without interfering w/my real network?
Thank you again for your help. I really appreciate it .
-
-
-
Technically, but they do share a cable going from switch to pfSense. Other than that cable, it's a completely separate network.
-
I bet it's enabled on that laptop.
-
Yes. That's what I thought you wanted to do from the start.
Won't need a new piHole though, you can just use the existing one but if you want another, go for it.
So that's why I said to make that network a /30.
A /30 gives you 4 addresses, the network address (in your case 192.168.20.0), 2 usable addresses (.1 and .2) and a broadcast address (.3).
If you go into the vlan20 interface, change the name, then change the IPv4 Address from a /24 to a /30.
Disable the dhcp server.
Then set the WAN on the lab pfSense to 192.168.20.2/30 as a static address.
That will give you a lab network with it's own router.
You can keep it at /24 until you're ready to connect the router, or keep it that way forever but there's no need since once the router is connected you'll never use more than 2 addresses. -
