Connecting HomeKit Enabled Router to pfsense?
-
I’m looking to integrate a HomeKit-enabled router (Linksys) with my pfSense setup. Since the HomeKit integration feature doesn’t work in bridge mode, I need to configure the Linksys router as a regular router.
In my current setup, pfSense is connected downstream of my main home router and linked to a managed switch with VLAN configurations. I plan to use VLAN 20 for the Linksys router and my IoT devices.
Is it sufficient to disable DHCP on pfSense for VLAN 20, assign distinct IP range to Linksys router (different than VLAN 20), and connect the Linksys router’s WAN port to a VLAN 20 port on the managed switch? Are there any additional configurations I should consider to ensure everything works?
-
So you are going to use the Linksys as an Access Point only?
How are you going to connect it? With the WAN on pfSense VLAN20 or it's LAN side there?
If it's via the WAN then you don't need to do anything but connect it. If it's via the LAN I would disable DHCP on the linksys.Steve
-
thanks for the reply Steve. Yes, i intend to use it as access point only.
I plan to connect Linksys WAN (internet) port to pfSense VLAN20 - i will just to connect it up see how it goes.
-
@rcknrll said in Connecting HomeKit Enabled Router to pfsense?:
thanks for the reply Steve. Yes, i intend to use it as access point only.
I plan to connect Linksys WAN (internet) port to pfSense VLAN20 - i will just to connect it up see how it goes.
All your Wi-Fi devices will have a double NAT if you use the wan interface, save yourself the hassle and eBay it and get an AP that supports VLANS.
-
@rcknrll said in Connecting HomeKit Enabled Router to pfsense?:
thanks for the reply Steve. Yes, i intend to use it as access point only.
I plan to connect Linksys WAN (internet) port to pfSense VLAN20 - i will just to connect it up see how it goes.
Turn off DHCP, and connect it via LAN instead and if it doesn't handle VLAN, then simply set the port to Untagged in the switch. This way you have turned the Linksys router into an AP on VLAN 20.
-
Yup that^. Though you may not be able to add a default route via the LAN which could be restrictive.
-
I suppose extra round of network address translation could lead to unwelcome issues. @Gblenn thanks for the advice, i will try to employ your recommendation this weekend.
-
@rcknrll said in Connecting HomeKit Enabled Router to pfsense?:
I suppose extra round of network address translation could lead to unwelcome issues. @Gblenn thanks for the advice, i will try to employ your recommendation this weekend.
Well, the one major thing is that with Linksys connected on the WAN port, pfsense has nothing to do with any of the connections on the LAN side of the Linksys router. So DHCP for example needs to be handled by Linksys, not pfsense in that case. It would work, as long as you make sure the subnets are different as in 192.168.1.1/24 on pfsense and 192.168.DIFFERENT.1/24 on Linksys. But you are then just putting a whole separate network on a VLAN. And you can not communicate from pfsense LAN to Linksys LAN without some effort on your part, like opening ports etc. It would be like coming in from the internet...
I'm sure there may be instructions out there for your Linksys model on what things to do to truly make it into an AP. Perhaps it is VLAN aware as well and then you could extend your VLAN onto the wifi network. So if you wanted you could have a Guest network on VLAN 20 and the rest on the default subnet under pfsense for example.
