LAN Bridge, VLAN on guest network port, DHCP and WAN

Slowmotion 0

I suppose this question has been asked multiple times in different fashions. If there are any existing threads that already hinted the solution please just told me to search the exact threads out… ‍️

Anyway here is my setup and question:

Got a fan less PC with 4 physical ports, OPT0 being configured as WAN, OPT1+OPT2 setup as Bridge LAN. DHCP configured and everything is working fine. I want to use the last physical port OPT3, as a guest network port for whatever I don’t trust (say some unknown source IoT gadgets), so that it can access Internet but not my private network (that is the LAN bridge of OPT1+OPT2, subnet 192.168.1.1).

I did create a VLAN, mapped OPT3 to it, created an interface OPT3VLAN, give it a separate subnet (192.168.3.1), and I can see OPT3VLAN right to LAN on DHCP service. Add a FW Pass rule of OPT3VLAN net to Any (for testing, ultimately should be WAN net only). So far so good.

However when I plug in a device onto OPT3 port, the device never get any DHCP. Inspecting the FW log found there are DHCP request on OPT3 but never got any reply.

I know there must be something pretty stupid/obvious going on but I couldn’t see. Any idea is highly appreciated.

Thank you.

Bob.Dig

@Slowmotion-0 said in LAN Bridge, VLAN on guest network port, DHCP and WAN:

I know there must be something pretty stupid/obvious going on but I couldn’t see. Any idea is highly appreciated.

Kinda, why did you create a VLAN in the first place? For a VLAN to do anything good you have to plug in a capable switch. So skip the VLAN thingy...

Slowmotion 0

@Bob-Dig Yeah silly me. Removing the VLAN and put the OPT3 port directly into an interface solved the DHCP problem.
A big thank you for your advice. :)