Subnet routing within the same LAN
-
Post your firewall rules from each LAN
-
Here is my firewall rule list. It is pretty basic at the moment for testing. I have even tried disabling the firewall completely under System/Advanced/Firewall & NAT
-
I have also selected the below option
-
Hmm, you only have one LAN interface in your rules tab, no OPT1 or so. Where do you connect 192.168.1.0/24 and 192.168.2.0/24 to?
Each subnet must enter on its own interface, physical or virtual doesn't matter.
-
That is not sound design. You don't put two IPv4 subnets on an interface like that in anything more than to maybe get through a renumbering transition. And even then you don't expect to be able to "route" between them.
Use two interfaces or VLANs + a managed switch.
There's a reason it is giving you trouble. You're not supposed to do it that way.
-
Thanks, that makes sense. I thought that by having a second gateway defined under system/routing/gateways I was effectively creating a virtual interface. So how do I create a virtual interface?
-
You create a vlan interface, and get a switch that supports vlans.
-
@johnpoz said in Subnet routing within the same LAN:
You create a vlan interface, and get a switch that supports vlans.
vice versa
-
Or use another physical interface to another dumb switch.
-
Thanks guys,
I have started reading through the pfSense book and it is now starting to make sense. I can see that my original plan was a terrible idea, having multiple subnets on the same broadcast domain. I have started setting up using vlan tagging, but will focus on reading more before I get too indepthThanks Again
Darren -
ou can tag all you want - doesn't mean anything if your switch doesn't support vlans
