Connecting to printer across vlans
-
I have a SG-3100 at my home that connects back to my office. I also have a second vlan for home traffic. There are rules in place to prevent the two from talking to each other for security. However I need access to my printer which is on my home network from my work network. I would like to set it up as a virtual IP address on my work network that redirects traffic to and from the printer. I have tried but cant seem to get the steps in the right order. Basically its vlan1 and vlan2. So what I assumed is that i could use nat like you do when you have something like an internal server that needs to be accessable. Apparently I dont know how to set that up.
Let me know so I can get this going. Its awful annoying to have to jump on my home wifi every time I have to print something.
B
-
@bbirdwell said in Connecting to printer across vlans:
Its awful annoying to have to jump on my home wifi every time I have to print something.
Ypu want to make your printer available to a (your) device on the Internet ?
The first part of your question :
VLAN are the same thing as LAN's here.
Example, you have a LAN interface setup like the default 192.168.1.1/24 - a printer having, say, 192.168.1.10 on this LAN.
When you connect to another LAN, like 192.168.2.1/24 - you could use the IP of the printer - 192.168.1.10 and print just fine. Jo just use your router as a ..... router.
If you have firewall rules on your second 192.168.2.1/24 interface that block access to the first LAN, 192.168.1.1/24, you have to place a "PASS" firewall rule on 192.168.2.1/24 interface. Now your are using your router as a router, and firewall ^^
Note : the second LAN on any pfSense has no rules, thus it blocks everything initially. You have to add some rules to make it useful.The printer alias is the list with IP's of all my printers on the LAN interface.
With this rule on my (captive) PORTAL interface, my captive portals visitors can print on my printers.Note : my visitors don't no sh*t about my printers, neither the IP nor network names, but the Avahi packages, and the DHCP registration into the DNS, makes devices that are capable to printer to find them, list their capabilities, and print.