WAN ports isolation
Disclaimer: there is no reason why I'd need this. I just like to experiment and dig into stuff.
My server has two NICs, LAN and WAN. I have a managed switch.
I thought I'd isolate the ports that are related to WAN just for the hell of it. The switch configuration is easy and logical - just create a VLAN out of specific ports and assign an id.
What about on the pfSense side of things?
Then I created a virtual interface (with the same VLAN id) under WAN. I didn't assign any IP or anything since that's configured on the real WAN.
Everything is working, but did I achieve what I intended to? What do you think? Do I need anything else, like any rules in the firewall?