Separation between the wireless and wired network help
-
Need Help
The pfsense has 4 network cards
Card 1 wan1
Card 2 wan 2
card 3 lan (to Switch) from Switch to all Points at home)
card 4 wlan from pfsense to apnow i have Two more ap
and i dont have a way to connect themIn theory
This should be like that
card 4 to Switch to apI have no more network points
Is there a way to make a distinction between wireless and wired
On a single network
Such as subnetInstead of spending another second network cable and switch
If so
How do I configure it in pfsense -
Do you need to have each AP on a separate isolated subnet?
Depending on what your access points are you may be able to use VLANs directly. Alternatively you could use a small VLAN capable switch like the Netgear GS108T (or even the GS105e).Steve
-
Do you need to have each AP on a separate isolated subnet?
I want all the AP sitting on same network
Can I use sub network ?
192.168.0.1-50
192.168.0.50 -100I remember something like that
But I do not know one hundred percentI remember that it was possible to divide a single network into two
And they both sit on the same cable infrastructureIt is possible, or am I mistaken ?
AP are routers that I use as AP
edimax br-6204wg
d link dsl-g604t
level one wbr 3406tx -
I want all the AP sitting on same network
Well just connect them all to the same NIC in pfSense. All of those routers have a built in switch so just chain them together. All your wireless clients will then be on the same subnet. It won't matter which AP they connect to.
Steve
-
Perhaps I did not explain correctly
I want the wireless clients Will be on a different network from The wired clients
192.168.0.1 wired clients
There is a wired network all over the house192.168.1.1 wireless clients
There is no wired network all over the house
There is no other connection to this networkAnd this the problem
Can I use the wired network For both networks
-
But you already have two NICs to separate wired and wireless traffic, card3 and card4. :-
Are you saying that you need to position these extra APs such that they can only connect to the existing wired network?Steve
-
To have the granularity of control you are looking for, stephen was right. You need to invest in a cheap managed VLAN switch that allows you to use tagged and untagged ports.
-
What is your subnet? Is it straight class C? /24? If so, you'll have to change the subnet scheme in order to separate wired from wireless. If you can't change the subnet scheme, You'll have to use VLANs to separate the data.
-
You're going to need another switch. Either another unmanaged for your wireless APs or one that does VLANs so you can do both networks on one switch.
A new unmanaged will be cheaper and not require you to learn anything new or reconfigure anything.
-
i am using separate lan card for each network, separating the wifi from the wired network, also separating the wifi into groups connecting each group into their own separated lan card. i think this is the simplest way and its working fine with me.
hadi57
-
But you already have two NICs to separate wired and wireless traffic, card3 and card4. :-
Are you saying that you need to position these extra APs such that they can only connect to the existing wired network?no
i want them To connect to card 4
But I do not have this option
So I want to cancel card 4
and Split the network on card 3 into twoWhat is your subnet? Is it straight class C? /24? If so, you'll have to change the subnet scheme in order to separate wired from wireless
it is 192.168.0.1/24 (see image)
how do i do that
That's what I'm trying to know
Is there an option in pfsense for two networks on one physical network
If I will choose there a smaller number
Will I have the option For another dhcp on the same network card
How to do itYou're going to need another switch. Either another unmanaged for your wireless APs or one that does VLANs so you can do both networks on one switch.
A new unmanaged will be cheaper and not require you to learn anything new or reconfigure anything.
It would be easiest to buy a new switch
And put new cables in the wall
Up to location That the AP would beI can not do that right now
It's a lot of work
And more money at the moment I do not haveSo I want to do it on the existing network
-
You should be looking for a nice, cheap used vlan switch… Or a miracle...
-
Bummer
I wanted to avoid drawing cable for new pointsIn any case
Thanks everyone for trying to help -
You won't need more cable if you get a VLAN switch - Thats sort of the point of the thing.
-
But you already have two NICs to separate wired and wireless traffic, card3 and card4. :-
Are you saying that you need to position these extra APs such that they can only connect to the existing wired network?no
i want them To connect to card 4
But I do not have this option
So I want to cancel card 4
and Split the network on card 3 into twoThis confuses me. You say you're not restricted by the location of the new access points. So why can't you connect them to card4 along side the existing access point?
Your later responses seem to indicate that you need to to connect them to the existing wired network because you only have single cabling to that location.
In which case you can use VLANs but you will need a VLAN capable switch. They are not that expensive. If you don't need gigabit bandwidth you could split one cat5 run into 2 100Mbps connections. You could use an ethernet over powerline solution (or over co-ax if you have that). You might be able to setup the new APs as repeaters instead and do it wirelessly.Steve
-
This confuses me. You say you're not restricted by the location of the new access points. So why can't you connect them to card4 along side the existing access point?
Just the opposite
I will try to explain
Maybe it does not go well then forgive meOur house has seven rooms
Each room has two or three network pointsAll points are occupied
No VacancyIn addition
There is a single point at home one side connected to pfsense
And on the other side of AP
This point is connected to the card 4Everything comes to the switch being held in my room
Two of the rooms have a reception problem
Where I want to put ap
But I have no connection availableThe only option to build a new line for every room
If you don't need gigabit bandwidth you could split one cat5
i do need gigabit bandwidth
I probably tomorrow or the day after tomorrow will pave two new lines
Hope I explained well
-
The point is you can tag multiple VLANs across a single cable. Put a switch at the end point, and break out the VLANs there.
I can just about guarantee nobody will notice you're running two VLANs over a gig-e link, speed wise.
-
What he said… ^
