Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Question about VLAN and VPN

    L2/Switching/VLANs
    2
    2
    233
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      demitri
      last edited by

      Hi,

      I'm having an issue that I'm not sure I have the right terminology to do a proper search for. I have pfSense running alongside a switch on my home network. One of the ethernet ports on the pfSense computer died so I "fixed" this with by setting up two VLANs - one for my internal network and one to bridge the pfSense computer and the outside world. This seems to work. I have a NAS on my internal network not exposed to the world.

      I use a VPN for all traffic from my (Mac) desktop computer. I noticed that tools to scan my local network to find the NAS no longer work which I attributed to being on the VPN. I moved it to a fixed address via the DHCP in pfSense, so it's not an issue anymore.

      The problem I am having is that when I start a large data transfer from my Mac to the NAS, almost any internet access will disconnect the VPN. My VPN provider isn't always rock solid, but the correlation has been too high to ignore. I'm wondering if being on the VPN is interfering with my local network access. Ideally I'd like to keep my local traffic separate from the VPN, but I don't know how to accomplish this. My desktop has a single ethernet port and wifi, so one possibility may be to have internet access go through wifi and local network access on the ethernet port. It's at this point where I begin to lack the terms for what I might be trying to do or if this nearing the problem/solution.

      Cheers,
      Demitri

      DaddyGoD 1 Reply Last reply Reply Quote 0
      • DaddyGoD
        DaddyGo @demitri
        last edited by DaddyGo

        @demitri said in Question about VLAN and VPN:

        The problem I am having is that when I start a large data transfer from my Mac to the NAS, almost any internet access will disconnect the VPN.

        Hello,

        note, if the NAS and MAC are on the same subnet then what are we talking about - not pfSense affected

        • bottleneck - is formed due to the following

        if all your traffic (LAN / WAN) passes through the same VLAN (you know the wrong eth. port)

        you reduce the throughput of the 1Gig interface

        ergo, you solved the problem with VLAN, but now everything goes through a real interface (1 pcs - VLAN) (maybe 1Gig)

        +++++edit:

        the lesson is that:

        • VLAN is good, but you can't break down a physical interface - to hundreds of millions of VLANs without a drop in speed

        • pls. think, only of the uplink ports of switches with many VLANs and they are usually squeezed into a LAG together with LACP (2 - 4 ports) or we choose a switch that has 2 x 10Gig uplink ports, for example

        Cats bury it so they can't see it!
        (You know what I mean if you have a cat)

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.