ISP modem downstairs, pfsense - attic one cable to rule them all?
-
Hey guys,
I am new to pfsense and I move to my new house soon.
It's a pre-built home from the 70's based in the Netherlands (everything concrete, no drywall)
I have my ISP's box at the ground level but my pfsense will be installed in the attic.
It might be possible to install 2 cables, better safe than sorry... I want to know what to do if I only can get one up the walls.
I have 2 managed switches (one downstairs and one next to the pfsense box which is virtualized), there will be 1 ap downstairs and 1 upstairs.The switches are TP-link TL-sg108E
The AP's are unifi AC AP PRO
How to set this up inside of pfsense, is it even possible with one physical cable upstairs (should be with vlans right)?Really difficult story if I read it back myself.
The layout will be as follows:
forgot to add the managed switch to the attic one.Thanks in common!
With kind regards,
Dennis -
The modem is in bridged mode. So I guess you have to connect to it via PPPoE.
So you want to go with only one cable to the switch where you connect the modem to and additional devices.@unf0rg0tt3n said in ISP modem downstairs, pfsense - attic one cable to rule them all?:
is it even possible with one physical cable upstairs
This depends on capabilities of the switch. Basically yes, it's possible, but...
@unf0rg0tt3n said in ISP modem downstairs, pfsense - attic one cable to rule them all?:
(should be with vlans right)?
PPPoE doesn't care about VLANs, it's on L2. It just goes over the Ethernet, L3 may go over the same simultaneously.
Since there are multiple devices connected to the modem via L2, each may be able to establish a PPPoE connection.
Why it's not an option for you to run pfSense on a small box on the ground floor? That would be the solution, I'd prefer.
If not, just try it out with your switch. Running PPPoE over a physical switch is similar to running it over a virtual switch as you have in Proxmox anyway. -
@viragomann said in ISP modem downstairs, pfsense - attic one cable to rule them all?:
The modem is in bridged mode. So I guess you have to connect to it via PPPoE.
So you want to go with only one cable to the switch where you connect the modem to and additional devices.@unf0rg0tt3n said in ISP modem downstairs, pfsense - attic one cable to rule them all?:
is it even possible with one physical cable upstairs
This depends on capabilities of the switch. Basically yes, it's possible, but...
@unf0rg0tt3n said in ISP modem downstairs, pfsense - attic one cable to rule them all?:
(should be with vlans right)?
PPPoE doesn't care about VLANs, it's on L2. It just goes over the Ethernet, L3 may go over the same simultaneously.
Since there are multiple devices connected to the modem via L2, each may be able to establish a PPPoE connection.
Why it's not an option for you to run pfSense on a small box on the ground floor? That would be the solution, I'd prefer.
If not, just try it out with your switch. Running PPPoE over a physical switch is similar to running it over a virtual switch as you have in Proxmox anyway.There is a physical switch next to the Proxmox box.
The modem is in bridge mode; it then only allows 1 device directly connected to it. which is directly connected to the internet. why do I need PPPoE? the device gets a direct "external" ip address.The small box is very possible for me. I have a ton of hardware laying around. I only want to get back to one server which has it all.
The switches is use have the following features:
TL-SG108E(8) 10/100/1000 Mbps GbE ports
16 Gbps switching capacity
11.9 Mpps forwarding rate
2 M packet buffer
8 K MAC table
Port configuration: Enable, Speed / duplex / flow control per port
VLANs – port-based and 802.1q (support for up to 32 VLANs)
Static Link Aggregation (2 groups, 4 ports per group)
QoS
4 Priority queues
802.1p
Storm control, per port rate limiting
IGMP Snooping v1-3
Port Mirroring
Basic Loop Prevention
Jumbo frame max = 16KBShould be enough for what I need
-
@unf0rg0tt3n said in ISP modem downstairs, pfsense - attic one cable to rule them all?:
The modem is in bridge mode; it then only allows 1 device directly connected to it. which is directly connected to the internet. why do I need PPPoE? the device gets a direct "external" ip address.
Okay, so you should be able to go with VLAN.
Define a VLAN for the WAN network on pfSense and the switch in the ground floor.On pfSense go to Interfaces > Assignments > VLANs > Add. Select the interface which the ground floor switch is connected to and set a VLAN tag.
Then go to Interface Assignments and select the newly added VLAN under Network port next to WAN. Open the WAN settings by clicking on it and configure it.However, since you're running pfSense virtualized you may also set up the whole VLAN stuff on Proxmox and provide pfSense an untagged WAN.