pfsense cisco 4400 wlc and lap configuration
-
Can anyone explain how to setup pfsense with 4400 series cisco wlc and 4 lap with vlans for security, iot,private,server my network is on 192.168.1.1 thats the main router pfsense is the second in that network because i cant bypass the main router cause a perfect storm of phone number changing and forgotten credentials because elon made me make an account then wait months before the equipmemt arrived so i cant ever do anything with my starlink i also have netgear fs726tp switch and others
-
@haydensdenofhay Can you put together a network diagram on something like draw.io to demonstrate what you're trying to do? Details on your pfsense hardware is helpful as well.
-
@rcoleman-netgate with pen and paper maybe but realize im amateurish
-
@haydensdenofhay That is totally fine - draw.io is free for what it's worth.
There's a lot here to unpack and a graphical representation would really help.
-
@haydensdenofhay. Will have dvr nvr on the switch with lap video encoder eventually a nextcloud server and ip cameras. draw.io drawing
-
@haydensdenofhay I fixed your link so it wasn't two screens long.
Your image:
A few questions... What is your intended purpose for the pfSense? You have DLink switches on the WAN side of it and all the same IPs on the LAN side -- which is going to cause you many headaches. Are the DLinks gigabit? Do they support POE? They're 802.11N and support 1GbE so putting them on a Fast Ethernet switch will result in handcuffing them. Are the DLinks Gigabit?
If I were doing this I would limit the things on the 100Mbps switch to the bare necessities. Throughput on them will be abysmal (capped at 50-60Mbps at best). You can find low-end POE midspans for less than $15 each that would power your APs.
Why are the switches on the WAN side of the pfSense?
Also consider changing your LAN from 192.168.1.0/24 to literally anything else in the RFC1918 spec if your Starlink is fixed at 192.168.1.1.
-
@rcoleman-netgate so they are gigabit switches they are not poe i see the bottleneck problem pfsense is being used as a firewall i think but really i was hoping to have it run everything all the base for my plan had it being the router firewall and stuff i knew how to setup vlans and the community is so helpful in learning stuff i.e i learn alot from your it brains. I want to make this networks main line fiber eventually if for nothing else i can patch the 4 areas of the property together with fiber through switches or something but thats an eventuality got to have money for that how about i remove pfsense from the equation convert it to my next cloud server put in a gigabit TL-SG1008PE for the lap and controller i dont know how to setup the lap and controller if u know a forum where someome might help with that i would appreciate it the cloud will be a family cloud used locally so it wont need insane infrastructure ..i have gigabit video servers my home security systems bottleneck they worked fine for a year or 2 then the company updated the firmware and since then i can no longer watch more than ome channelcin hd which only makes sense if they are stealing the streams then sending them back to u
-
@haydensdenofhay. You mentiomed movimg it to a different network10.0.0.1/24 or something in the 192.168.54.1/24 as far as i know u cant use 10.0.0.1/24 if the router is on 192.168.1.024 but thats just what most firmware tells me in router
-
You can use any private subnet for the pfSense LAN as long as it doesn't conflict with any other connected subnet. In this case the Starlink router is using 192.168.1.0/24 already so you need to use some other subnet for the pfSense LAN. By default it uses the same subnet creating a conflict.
Steve
