Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    VLAN issues

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 4 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      valunthar
      last edited by

      I recently tried to implement VLANs on my network using a computer with PFsense and a D-Link DGS-1210-24 switch and ran into some odd errors. DHCP would not propagate no matter what I tried, and when I temporarily bypassed that by using a static IP address I could not browse to any sites (404 error) despite the fact that I could ping google and my DNS servers with no problem. I've since reverted the changes for the day as I couldn't keep the LAN offline for very long. I do intend to try again when I have some more time so some pointers would be much appreciated.

      The steps that I followed to set things up are:

      1. Set up vlans 100 and 200 on the switch, all ports on each VLAN untagged with the exception of port 1 which is tagged on both vlans due to it being the direct link to the router
      2. Go to Interfaces -> assign on the pfsense router and make sure that the interface that connects to the switch isn't associated with anything
      3. Create the appropriate VLANs within the vlans tab, associating them with the proper interface during setup
      4. go back to the assign tab and assign 1 Vlan to the LAN interface and create a new virtual interface for the second vlan
      5. Go to each interface page and make sure that the interface is enabled and that a static IP is set for each
      6. Change DHCP server ranges as necessary for each interface
      7. Left the LAN Interface VLAN firewall rules alone since I thought that changing it wasn't needed
      8. Cloned the firewall rules from said LAN interface VLAN to the virtual VLAN interface making appropriate changes as necessary.

      Any ideas?

      1 Reply Last reply Reply Quote 0
      • H
        heper
        last edited by

        could be lots of things, but at first glance it looks like your pfsense configuration should function.µ
        i'm guessing its a switch configuration issue.

        did you set the pvid (Port VLAN ID) for the untagged ports ?

        1 Reply Last reply Reply Quote 0
        • stephenw10S
          stephenw10 Netgate Administrator
          last edited by

          After major config changes like that you probably have to clear your state table (or reboot the box). Left over states can cause all sorts of problems. Check your firewall logs for things getting blocked that shouldn't.

          Steve

          1 Reply Last reply Reply Quote 0
          • W
            webdawg
            last edited by

            Did you setup the port that pfsense is connected to as a trunk port?

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.