Migrate LAN to VLANs

pwood999

Hello,
I currently have a simple single LAN configuration, with dual-WAN for my internet connections.  Just bought a Foundry FESX448 on ebay, and would like to migrate to a VLAN architecture.

Is there an easy way to move or replicate my existing LAN rules to one VLAN, or do I need to start from scratch ?

Thanks,
Pete

ashima

Hi,

You don't have to start from scratch. Just go to Firewall–-> Rules----> LAN tab-->  copy the LAN rules and change the interface to VLAN.

Ashima

pwood999

I presume I need to do these one at a time ?  or is there a bulk copy method ?

heper

you don't need to copy anything.
you can just migrate 'lan' to a vlan called 'lan' ;)

chances are, you will lock youself out if this is your first time playing with vlans…..

so what i'd do if i were you:

1. create 2 vlans on switch - 10 & 20 / untag each of them on atleast one port
2. tag both vlans on the port connected to pfsense
3. add vlans to pfsense
4. assign an interface to vlan 20
5. configure interface for vlan_20 & assign firewall rules & optionally enable dhcpd
6. check if the new interface is fully functional & that you can access the webgui from vlan_20
7. goto interfaces-->assign & move the LAN interface to vlan_10 & click save/apply. all configuration from 'LAN' should now flow over the vlan
   8 ) see if it works. if not: fix your vlan config ;)

Guest

I currently have a simple single LAN configuration, with dual-WAN for my internet connections.

How powerful is the hardware and how great is the network? (devices, users, traffic)

Just bought a Foundry FESX448 on ebay, and would like to migrate to a VLAN architecture.

Ok is this a switch with advanced Layer2 software package or with a base Layer3 software package? What
was able to read from the foundry website it is a Layer3 switch. Foundry FastIron Edge X448 series
FESX448 FastIron Edge X448 with Base L3 SW.Includes 48 10/100/1000 ports (RJ-45) and 4-port SFP for fiber optics (SX,LX,LHA,and CWDM),and one AC power supply.

• You can now turn off the Layer3 menu and route by the pfSense firewall
• You can also create a small vlan as a transfer net only for the pfSense firewall and then you may create all vlans as needed
  on the switch and the switch is routing the entire VLANs then instead of the pfSense firewall.

Is there an easy way to move or replicate my existing LAN rules to one VLAN, or do I need to start from scratch ?

What is this for a switch? Layer2 or Layer3?

pwood999

Ok got it working using a spare pfSense PC.  Moving the LAN interface over to VLAN-10 does actually work, but it did break some rules.  I then just copied these to the correct VLAN Interface as required.

FYI, the Foundry X448 I bought is actually full PREM version with L2, L3-Base & L3-Full.  Only thing missing is POE.  I might try using the L3 Routing later on.

Waiting a few days to re-config my main pfSense box, because it needs new CR2032 Battery.

Thanks for the tips,
Pete

Guest

FYI, the Foundry X448 I bought is actually full PREM version with L2, L3-Base & L3-Full.

So let the switch route between all the VLANs or the entire network to free up the load from the pfsense
box able to realize more for you, might be then also a way able to march on or am I wrong with that!?