DHCP not working on VLANs

kiokoman

@danzek said in DHCP not working on VLANs:

UniFi 8-port

how about the switch? does it let vlan pass ?

danzek

@kiokoman Yes, the Networks were configured using the VLANs as shown in the screenshot.

dotdash

@danzek said in DHCP not working on VLANs:

The main wireless network (wutangLAN)

That ain't nothin to F* with...

Not pfSense related, but in UniFi:
Make sure DHCP guarding is off on the vlan network
Make sure the 'block lan to wlan broadcast' is not checked on the wireless network
Make sure the port profile has the vlans tagged on the ports

danzek

@dotdash thanks! Unfortunately none of these resolved it, either. These were what UniFi support had me do plus create a WLAN group. I appreciate the ideas, though!

mcury

My unifi AP has 2 WIFI's network, GUEST, and WIFI.
My AP is connected to a SWITCH (not Unifi switch), and this Switch is connected to pfsense.

WIFI VLAN 10
GUEST VLAN20

pfsense side: note that the ports are tagged.

Switch side: note that the ports are tagged.

In the Unifi controller side, I just created the WIFI networks and set VLAN:

Hope this can help you.

danzek

@mcury how would I tag the ports in pfSense? Note I’m using an SG-1100 and the LAN port goes directly to my UniFi switch, so the main LAN and all VLANs are on the same “port” out of my Netgate device.

mcury

Check if the SG-1100 has the option Interfaces/Switch/VLANs
There, you can create the vlan groups, but I'm not sure if the SG-1100 has this menu.

Maybe it's better to wait a more skilled person in SG-1100 to help you.
I'm saying that because you may set the wrong things there and lose communication with the Firewall.

Edit:

Take a look at this:

https://docs.netgate.com/pfsense/en/latest/solutions/sg-1100/switch-overview.html

kiokoman

vlan work from any interface
on this video i see that he is doing something more to the switch https://www.youtube.com/watch?v=JblnjsnJNJU at around 9:30
another video here https://www.youtube.com/watch?v=Bp_B79-WLlU

NogBadTheBad

Do a packet capture on the pfSense interface, do you see a request from the client ?

If you don't its not a pfSense issue.

danzek

@dotdash the tagging in pfSense was the issue. I misunderstood how to do this. Thanks!

danzek

THIS IS NOW SOLVED. The issue was tagging.

Inside pfSense I went to Interfaces > Switch > VLANs and added tags for the VLANs on members 0 (default system VLAN) and 2 (LAN) which resolved my issue.

Thanks everyone!