Routing between PFSense and second router ???
-
MikeIsFly! Okay! I believe I have got it! Thank you!
I forgot about the FIOS G1100 performing DHCP services… I will turn that off.
I will look into the network switch you mentioned. DAMN!!! That is a MF swith!!! OMG!
What can be viewed with a serial console on that switch? Just the CLI or GUI? Can one see their PFSense CLI or GUI from it too?What type of shell/ terminal does this switch use for a command line interface?
I have experience with BASH and with Windows CMD, but not much else... Even with PFSense/ FreeBSD there has been little to no use case for SH.
So I have never learned SH... I'm told BASH is similar enough and/ or a better substitution/ replacement.Hopefully I can get by, as I do not prefer a GUI. I am becoming accustomed to using a GUI thanks to PFSence...
Years ago I had to start learning to use a mouse... I use one all the time now, however it is not my preference.Excluding some Wireless APs, RASPBERRY-PIs, and a ROKU; I don't know what else I could power with POE... What are you powering with POE?
-
Your not going to buy such a switch new - not for home use.. That is going to be an ebay special..
If your looking for a smart switch to do vlans.. There are multiple options out there that support cli and or gui, etc. I have new sg300-28 and sg300-10 on my network. And a bunch of cheaper ones to play with netgear, tp-link, d-link.. these are cheap 8 port gig smart switches.. Very limited in feature set - but very affordable for the home budget in the less than $50 market.. More like $30, etc.. I would for sure stay away from the tp-link 105e or 108e models.. They leave vlan 1 on every port, no way to remove it..
POE for sure could be an option.. If your running 4 unifi AP, what model? Their different models support different modes of POE… like the lite and LR models use passive 24 volts.. So you have to be careful on what POE switch you get. Even some of their switches don't support it, etc.
As to POE, I only have 3 AP currently.. Just use the injectors - but somewhere down the road is camera's that will be most likely from unifi.. So I can see getting a smaller port density poe switch to handle those.
BTW where you running your controller for your AP? On that same 192.168.3 or you doing L3 adoption?
-
Yeah…...
A switch of that caliber is not in my budget, nor do I own anywhere near enough devices to require that level of switch.
It's DAMN NICE though!!!
I am using Unifi AC Pro APs... I used the Unifi mobile application from my cell phone (L3 adoption).
I don't remember exactly, however I believe I originally configured the APs via SSH (Putty) from a PC on my LAN interface.
I may have had the Unifi controller/ discovery software on that same PC also (Layer 2 while the APs were plugged into the 192.168.1.1 interface) ...As far as I know; PFSense does not have the resources to run a controller or other variant software for APs... Do you know if any new features came with FreeBSD 11 in this regard?
-
Your not going to buy such a switch new - not for home use.. That is going to be an ebay special..
True, Brocade sold off all their businesses in parts so you couldn't buy the switch new anyway unless there is still product in the channel. Still iyd a outstanding switch which I got for about $125 on ebay. From what I can see, it may be some what of overkill for your needs but if you can I would snatch one up on ebay before they are all gone just in case you wanted one in the future. I bought 6 of them so I would have back ups if mine died. I haven't had one go bad on me yet and I have had mine for 3-4 years now. Before that I was using HP procurves which are outstanding as well. Brocade just had better features. To Johnpoz's point some of the consumer switches would probably fit your needs better.
To answer your question about the CLI, brocade has their own OS which is very similar to Cisco IOS and they support CDP and FDP which makes VoIP fairly easy if you use cisco phones. If you wanted to, I guess you could telnet from the switch to PfSense but I don't really do that I would just open another telnet/ssh window. I mostly use the GUI interface of PfSense. Works very well. Could get your self in trouble messing with the CLI. I will wait for them to come out with a CLI abstraction layer to start playing with the command line. FreeBSD should really be hidden from the user for security reasons IMHO.
I have Ubiquity AP the AC-pro access point and love them. I run the controller software on a Windows 10 VM on Windows Server 2012 R2. I highly recommend them.
-
Yeah I run the controller on VM running on esxi, but I just use ubuntu vm.. Way less resource hungry and easier to manage, etc.
You could always get their little cloud key as they call it, or run it on a pi, etc. Running the controller is what makes the APs from unifi even better..
-
Thank you Guys! I do not think you could have made it easier!!
The FIOS G1100 is operating like a simple switch using the IP range that I set for the PFSense FIOS interface (with the addition of WIFI).
I finally have access to the FIOS GUI!!!
The last thing that I need to be able to do is SSH (Putty on Windows) from my main PC (192.168.1.101) into the FIOS G1100 (192.168.2.100).
So far I have had no LUCK! I have tried as follows:In the FIOS GUI; I have enabled SSH (on the normal port #22)
I have set the FIOS GUI fire-wall security to allow said traffic
I have set the FIOS GUI local administration to allow said traffic
I have set the FIOS GUI rules to allow port #22 to be forwarded from IP 192.168.2.100 (FIOS LAN port wired to PFSense FIOS interface port)I even temporarily tried setting the FIOS GUI remote administration to allow said traffic… I must be missing something in this crappy FeatureLESS FIOS GUI!
The attached photo is of my PFSense Networking-Server and my FreeNAS Storage-Server. I'm looking for a switch similar in size (a width of aprox. 17").
O! F%#@ ME! I forgot to mention... I need at least two ports of either SFP+ or RJ45 for 10G networking.Please get me to a command line via SSH! PLEASE!!!
-
I seriously doubt that Verizon will give you ssh access to the router. I have FiOS as well and I have the same model router you have. I tried to access it but it was a no go. Why do you need SSH access when you should be able to do everything from the GUI.
-
Okay, That makes sense… Verizon blocks SSH access.
I don't NEED to be able to SSH into the G1100. I just prefer to, over using the GUI.
Thank you for answering my question. :D
-
No problem. I work for a very large ISP not Verizon, and the only way to get SSH access is from our corporate network. If I find a way I will post back here but I doubt it. I know on our modems getting access to ssh opens a lot more options than is present in the GUI. In addition our password changes everyday to log into said modem so even if you could get access to the command-line, cracking the password would be really tough. Not sure if Verizon is doing the same thing.
No problem in answering your question, I like helping plus seeing how you did your setup, it gave me ideas on how I may reconfigure my setup in the future. I like to read through the forums to see others problems and solutions to add to my own knowledge. Good luck to you in the future.
-
Thank you! :D
Your help will always be appreciated here, at least by me anyway!
I'm happy to share anytime! I'm one of the odd-balls that is doing everything with actual hardware and NO Virtualization…
I hear ya; learning new information all the time! However this is all new to me and this community has been absolutely crucial!
I'm the type of person that simply loves to learn something new anytime or even all the time! :D
Good luck to you as well in your endeavors!
