Basic setup on vmware workstation.
-
My goal is to have vlan 100 and 101 on my LAN.
Both my nics support vlan tagging.
I've installed pfSense on vmware workstation. I've bridged my 2NICS one to LAN and the other to WAN. These work fine.
I've created vlans on my LAN in pfSense and created DHCP servers.On my LAN side is a Mikrotik box, who distributes them to access ports.
I cant get it to work.
I can ping the firewall, the host, and the vlans from my mikrotik box.Is there any special rules i need on my pfsense box?
Do I have to change virtual nics? Intel 1000pro atm.
My mikrotik box works, ive tested it other firewalls.
Im pretty clueless. -
i will assume somethings
for now on, pfsense in vmware will be pfsense box, the scheme will be in this way I GUESS
pfsensebox with dhcp and all that stuff, –>>> microtik box -->> lan sw and ports and whatever you want to put in there
the microtik box should be a dhcp relay and have some nics or vif to make the interconn to the pfsense box
so, in order to help you, can you provide more info?cheers
-
Your guessing is correct.
Host, WinXP:
WAN IP is DHCP
LAN IP is 192.168.1.3pfSense:
In VM Workstation the NIC's are bridged, I can communicate with both of them.
pfSense 2.0.3 Is installed.
I've created vlans and set DHCP servers on them.
Vlan 100 and 101 - 192.168.100.1 and 101.1-
WAN is DHCP.
LAN is 192.168.1.1MikroTik:
It's basically this setup right here: http://wiki.mikrotik.com/wiki/Vlans_on_Mikrotik_environment
With an IP on my WAN side, 192.168.1.5.My MikroTik router can ping both Vlans, host and FW. And they can ping back.
Fast paint overview: http://i.imgur.com/saayP9A.jpg -
I have never use, any mikrotik can you tell me the version so i can make some test? and i think that you do not need a bridge i guess that you will need a dchp-relay into microtik that can use, as far as i know the arp messages from dhcp will be suppresed by any firewall or any device out of the scope, btw this microtik box is what? router? a hardware (pc)? un sw or what? really dont not anything about mikrotik
-
The MikroTik box is whatever I want it to be, router, firewall, switch. You should check them out, they are awesome and cheap.
Anyways, just think of it as a switch. Tagged vlan on trunk and untagged on accessports. -
sorry bro! i was outsite town on some "Vacations trip" so not laptop allowed o any smartphone xD, ok if you gonna treat like a switch you does not have to have any special config, just trunk, trunk and ready to roll on the layer 2 sw, if it gonna be a firewall/router, you should prepare ir like a dhcp relay agent to work, this is gonna be in almost case the setup PFSENSEBOX –->> MikroTikBox(as firewall or router with dhcp relay included) --->> layer 2 sw, please check out this document of mikrotik, http://wiki.mikrotik.com/wiki/Manual:IP/DHCP_Relay and related, with a mikrotik cheap? more than pfsense? lol i love the product even in some case have failed me