4. Migrate LAN to VLANs

Migrate LAN to VLANs

  • P

    Hello,
    I currently have a simple single LAN configuration, with dual-WAN for my internet connections.  Just bought a Foundry FESX448 on ebay, and would like to migrate to a VLAN architecture.

    Is there an easy way to move or replicate my existing LAN rules to one VLAN, or do I need to start from scratch ?

    Thanks,
    Pete

    0
  • A

    Hi,

    You don't have to start from scratch. Just go to Firewall–-> Rules----> LAN tab-->  copy the LAN rules and change the interface to VLAN.

    Ashima

    0
  • P

    I presume I need to do these one at a time ?  or is there a bulk copy method ?

    0
  • H

    you don't need to copy anything.
    you can just migrate 'lan' to a vlan called 'lan' ;)

    chances are, you will lock youself out if this is your first time playing with vlans…..

    so what i'd do if i were you:

    1. create 2 vlans on switch - 10 & 20 / untag each of them on atleast one port
    2. tag both vlans on the port connected to pfsense
    3. add vlans to pfsense
    4. assign an interface to vlan 20
    5. configure interface for vlan_20 & assign firewall rules & optionally enable dhcpd
    6. check if the new interface is fully functional & that you can access the webgui from vlan_20
    7. goto interfaces-->assign & move the LAN interface to vlan_10 & click save/apply. all configuration from 'LAN' should now flow over the vlan
      8 ) see if it works. if not: fix your vlan config ;)
    0
  • ?

    I currently have a simple single LAN configuration, with dual-WAN for my internet connections.

    How powerful is the hardware and how great is the network? (devices, users, traffic)

    Just bought a Foundry FESX448 on ebay, and would like to migrate to a VLAN architecture.

    Ok is this a switch with advanced Layer2 software package or with a base Layer3 software package? What
    was able to read from the foundry website it is a Layer3 switch. Foundry FastIron Edge X448 series
    FESX448 FastIron Edge X448 with Base L3 SW.Includes 48 10/100/1000 ports (RJ-45) and 4-port SFP for fiber optics (SX,LX,LHA,and CWDM),and one AC power supply.

    • You can now turn off the Layer3 menu and route by the pfSense firewall
    • You can also create a small vlan as a transfer net only for the pfSense firewall and then you may create all vlans as needed
      on the switch and the switch is routing the entire VLANs then instead of the pfSense firewall.

    Is there an easy way to move or replicate my existing LAN rules to one VLAN, or do I need to start from scratch ?

    What is this for a switch? Layer2 or Layer3?

    0
  • P

    Ok got it working using a spare pfSense PC.  Moving the LAN interface over to VLAN-10 does actually work, but it did break some rules.  I then just copied these to the correct VLAN Interface as required.

    FYI, the Foundry X448 I bought is actually full PREM version with L2, L3-Base & L3-Full.  Only thing missing is POE.  I might try using the L3 Routing later on.

    Waiting a few days to re-config my main pfSense box, because it needs new CR2032 Battery.

    Thanks for the tips,
    Pete

    0
  • ?

    FYI, the Foundry X448 I bought is actually full PREM version with L2, L3-Base & L3-Full.

    So let the switch route between all the VLANs or the entire network to free up the load from the pfsense
    box able to realize more for you, might be then also a way able to march on or am I wrong with that!?

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy