[ask] Split LAN for better solution ??

General pfSense Questions
Log in to reply
  • T

    Dear Pfsense..

    I have LAN (more than 50 PC's), and i want to split this LAN with different IP anda subnet.
    example: 20 PC's with IP 172.16.1.1/24,  10 PC's with IP 192.168.1.5/24, then 20 PC's with 10.10.10.4/24

    For all network i don't want to use DHCP, because must be controled all PC's if broadcast something (like virus). My Bos said for user static IP for every computer. Because from the IP 192.168.1.5/24 need to connect IP 172.16.1.1/24

    where is better solution for network like this, use multiple subnet or VLAN??
    and how to create like multiple subnet or vlan??

    regards

    0
  • Cry Havok

    Either:

    a) Install a VLAN capable switch

    b) Install multiple network interfaces (one per subnet) and a switch per subnet

    Both work, without knowing your definition of "better" I can't say which is better ;)

    Personally I'd suggest for your IP ranges you use the same /16, so use 172.19.0.0/24, 172.19.1.0/24 and 172.19.2.0/24, rather than randomly assigning chunks from each RFC-1918 range.

    0
  • W

    why not use static dhcp?  it's much more simple than using static ip and the results are the same

    as far as the seperate subnets go theres more than one way to do this…..it depends on what you want.  3 seperate interfaces and 3 seperate switches would be how i'd do it but it's more expensive that way.  vlan switch can accomplish the same thing but i guess i'm oldschool

    0
  • jahonix

    How much traffic do you expect between your subnets?

    If it's alot then I tend not to use VLANs since they share the same physical interface.
    If it is moderate then go with VLANs and a VLAN capable switch.

    0
  • K

    @jahonix:

    How much traffic do you expect between your subnets?

    If it's alot then I tend not to use VLANs since they share the same physical interface.
    If it is moderate then go with VLANs and a VLAN capable switch.

    Yeah. Where's that lagg support?! :P

    The third option of course is to use a layer 3 switch to route between subnets and out to the pfSense as gateway. But if you're asking the question…

    0
  • W

    @wonslung:

    why not use static dhcp?  it's much more simple than using static ip and the results are the same

    Agreed.  Static IPs are for servers and network equipment.  Anything the end user touches is DHCP.  Addresses can be reserved so they always get the same one, but no end user equipment is ever static in my environments.

    0

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy