Accessing one subnet from another subnet.
-
@Nog, OH MY GAWD! What a setup!
My linksys is vlan capable, but I have no idea if I can still use it's wifi AP.
Does your PFSense box still handle DHCP duties for the entire network? -
-
@Nog, OH MY GAWD! What a setup!
My linksys is vlan capable, but I have no idea if I can still use it's wifi AP.
Does your PFSense box still handle DHCP duties for the entire network?Yes all the DHCP for the 6 subnets is done via pfSense.
The 5 vlans hang off my LAN interface.
-
@JKnott I should turn off NAT on the PFSense machine?
Yes. Don't use NAT unless you have to and the only place you need it is with the DSL modem, assuming it's in gateway mode. Also, why do you have that Linksys router, in bridge mode, as well as that unmanaged switch?
I have no idea if it is gateway mode. It is a Comtrend ADSL Router model 5220u.
I put the linksys wrt1900acv1 in bridge mode so it would not hand out dhcp.I should have prefaced this as I am a paramedic, with obviously no networking experience whatsoever. If you're having a stroke, heart attack, medical emergency, I'm your guy.
-
@JKnott I should turn off NAT on the PFSense machine?
Yes. Don't use NAT unless you have to and the only place you need it is with the DSL modem, assuming it's in gateway mode. Also, why do you have that Linksys router, in bridge mode, as well as that unmanaged switch?
I put the linksys wrt1900acv1 in bridge mode so it would not hand out dhcp.
I should have prefaced this as I am a paramedic, with obviously no networking experience whatsoever. If you're having a stroke, heart attack, medical emergency, I'm your guy.
You should just be able to switch off dhcp on the wrt1900acv1, give it a fixed IP address on its LAN interface and connect it to the dumb switch and the dumb switch to pfSense.
-
I have no idea if it is gateway mode. It is a Comtrend ADSL Router model 5220u.
Since you appear to have at least 3 devices connected to it, I'm assuming it is.
I put the linksys wrt1900acv1 in bridge mode so it would not hand out dhcp.
So, it's still acting as a router. You don't need one there.
If you're having a stroke,
I may, after trying to figure this out! ;)
-
Well, I thank you all for the input. Somehow, somewhere I goofed something up, and had to take the entire miscondigured system down. Luckily I do have some older backups before I started making major changes. But it’s time to figure it out.
-
You really should put your networks behind pfsense… Does pfsense box have another interface you can use? or you going to need to invest in a smart switch... Cheap can be had for $30 or less even.. Just stay away from the tplink cheap ones - they don't handle vlans like they say they do.
If our pfsense has another interface just use your wifi routers as AP and switch ports and you can isolate your 2 networks that way. As to pfsense wan side - sure its nicer to put public on pfsense wan. But a double nat also will work..
If you need some help in how to set this all up - just ask...
-
Thanks @JohnPoz.
I'm going to buy a Netgear GS108Ev3. Says it does VLAN's, relatively cheap.
Modem, PFSense, Netgear switch, wireless AP's, then dumb switches.
Sadly i have one of those cheap Qotom boxes with only two ports, so no OPT1 availability.
I also have to read up on both of the wireless AP's. The issues all started when I took the Linksys out of bridge mode, and it created all sorts of havoc. Somewhere traffic was being blocked.
When I go to do all of this, I am going to do a fresh install and work my way from there.
TRUST ME, I will be asking questions.
-
NAT rules went to seed.
I think that I had clicked them disabled, but hadn't clicked save yet. And somehow, someway, they saved.
The new switch arrived today, and while I don't have VLANS figured out, it is capable of doing them. That is something to do on another day as I split wood, and loaded and unloaded three truck loads today.