DMZ a secondary router on my network
-
Ok I know this makes no sense but just bear with me.
My house mates already had a router when I showed up with my pfsense box. I didn't want to bother them so I thought "ok Ill just pass their router right through my box so that everything appears to be the same to them but I can still get all of the pfsence goodness and fully manage the network". So I setup a port forward of ALL of the ports for their routers ip and that seemed to solve the upnp issue that they were having when trying to play videogames, and I setup a wide open vlan for the router so it had no firewall rules applied to it (its currently using my lan and I want to put firewall rules on lan). The problem is it doesn't seem to want to use the vlan. I have the port for their router set to be untaged on my switch and the port and the lan port on the switch as tagged. I setup the DHCP server, I enabled the interface, I set a valid range. Its just not taking an ip from the vlan range.
Thank you for any advice or suggestions you may have.
-
@tbbz8x8 said in DMZ a secondary router on my network:
I have the port for their router set to be untaged on my switch and the port and the lan port on the switch as tagged.
????
The switch port is untagged but it's tagged???
-
Sorry that was confusing.
On the switch the lan port coming from my router, the pfsence box, is tagged.
The port coming from my housemates router is not tagged, because people dont normally use vlans for consumer grade routers.
-
When you try to ping something on your house mate's network, does the tagged port LED flash? Since you have a managed switch, have to set up port mirroring so that you can watch the traffic through that port with Wireshark?
I find using Wireshark, with port mirroring, so useful, I bought a cheap 5 port Gb, managed switch just for that purpose.
