Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Basic VLAN configuration

    Scheduled Pinned Locked Moved L2/Switching/VLANs
    5 Posts 4 Posters 785 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      benjaminSTW
      last edited by

      Hello,
      i have just bought an SG2100 and i am stuck making VLAN working.
      I am new with vlan configuration and even after looking at documentation, i cannot make it work like i want.

      basically, i would like to have 3 vlan network :

      • Main

      • Cameras

      • IOT

      2ca48dfd-9b6a-4e0c-9b7f-11ced81a61f9-image.png

      For the moment, I have only setup the port 3 of my netgate switch so i can test my configuration.

      a2e9a613-758a-44bb-975c-934313277efe-image.png
      6693ff0c-4b79-412a-abb1-c78865697027-image.png

      Also for testing purpose, firewall rules are wide open (same of the other vlans) :
      dc4cbc14-d317-4671-886a-858d23fe3ff3-image.png

      and DHCP is also set up :
      9114eb4f-b44a-4f16-a644-f9f04d6997a5-image.png

      so my problem is :

      When i plug my pc on port 3, i got an ip from the "main" VLAN but i cannot find how to be on vlan "CAMERAS" or "IOT".
      I have tried "DHCP Static Mappings for this Interface" but no result.

      What am i missing ?

      Thank you for help.

      KOMK 1 Reply Last reply Reply Quote 0
      • KOMK
        KOM @benjaminSTW
        last edited by

        @benjaminstw I am also still learning the specifics of vlans, but if I understand correctly you must either have a switch in between that tags the traffic appropriately, or if you're directly connected then you have to configure your PC NIC to use that vlan.

        johnpozJ M 2 Replies Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator @KOM
          last edited by johnpoz

          Well you have vlan 20 and 30 tagged on port 3.. So yeah your device would have to be set to understand the tag and put traffic on the wire with the tag.

          Are you trying to put the ports on your 2100 on different vlans.. Then you would put those ports in that vlan untagged. Then if you plug a pc into that port it would be on that specific vlan without having to understand tags.

          https://docs.netgate.com/pfsense/en/latest/solutions/netgate-2100/switch-overview.html

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.11 | Lab VMs 2.8, 24.11

          1 Reply Last reply Reply Quote 0
          • M
            mcury Rebel Alliance @KOM
            last edited by

            This post is deleted!
            1 Reply Last reply Reply Quote 0
            • B
              benjaminSTW
              last edited by

              Hello,

              thank you for your answers, it is very helpful.

              I was thinking it was possible, when you have multiple tags configured on a single physical port, to force the tag attribution for each client on the switch side.

              Now i understand that i need a managed switch with my Netgate to do what i want as my cameras is not managing vlan tag on their side.

              Have a good day.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.