Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Basic Setup for Routing between VLANS

    Scheduled Pinned Locked Moved
    Virtualization
    2
    4
    9.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      madmike2014
      last edited by

      Hey guys,

      Just joined the forums.  Big fan of pfsense and I just decided to delve into the world of VLans.  So, I need some help.  I've scoured every bit of info that I could find and nothing seems to get me started.

      My setup:

      Without getting too in depth. I have a pfsense box, 1 WAN, 1 LAN, connected to a new Netgear GS108PEv3.  I have a 3CX VoIP system installed with 2 Polycom phones.  I have configured 1 VLAN on the pfsense box, VLAN 10 for the 3CX.

      What I want to do seems simple, I just want to be able to pass traffic to and from VLAN 10 to LAN so that I can access my 3CX box or point the polycom phones to it from the LAN.

      Anyone daring enough to help a vlan newbie with a semi basic setup?

      I added the Vlan so that I could keep a more secure network for my computers. I had to open up about 600 ports to the 3CX so I'd rather it be on a different lan or vlan.

      Once this is done I will be adding some other vlans for a guest wifi and admin wifi, but until I get this first one set up I won't be able to get the other configs right…

      Anyways,

      Have fun and thanks!

      1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator
        last edited by

        Pfsense will auto route between network attached to it.  The only thing you have to do if you want to pass traffic between the networks/vlans is firewall rules.

        Remember rules are placed on the interface where traffic will first hit pfsense.. So if you want vlan 10 to be able to talk to lan - then the rules would be placed on vlan 10 to either allow the traffic you want or block, etc.

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.03 | Lab VMs 2.7.2, 24.03

        1 Reply Last reply Reply Quote 0
        • M
          madmike2014
          last edited by

          Johnpoz,

          thanks so much for the response.  I am very familiar with the practicality of what you are saying.  i know i need rules but EVERY single rule I seem to put in place still doesn't allow me to ping or http to any equipment on the subnet of the vlan…

          1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator
            last edited by

            And where ae you placing these rules?  The default lan rules are any any… So if you bring up a vlan - lan should be able to talk to anything on the vlan out of the box.  If you can not - then you prob have a problem with the box on the vlan having a firewall.  Or maybe the vlan is not even correctly connected to pfsense.

            Post up your rules on lan and vlans..

            And how is your switch configured.  I have a gs108ev3 as well in my av cabinet that I run multiple vlans on..

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.03 | Lab VMs 2.7.2, 24.03

            1 Reply Last reply Reply Quote 0
            • First post
              Last post