PFSense & Cisco Switch MS220-24p

classifed200

Hello,
I've been trying to get pfsense as my firewall instead of a cisco firewall..
but have been having problems with this switch.
The Switch Vlan Is 99..
Wont Activate/Pass Through Just Indicator Stays Orange.

marvosa

Gonna need more info. How are things connected? Have you validated the config on your trunk port? Are you allowing the appropriate VLAN's over the trunk? Are your access ports in the correct VLAN?

classifed200

@marvosa
I’m doing right now all switch ports are trunked. And lan connect to port 2. No access ports. This is all on vlan 99 for whatever reason cause the switch was config that way a while ago

classifed200

Sorry, I Forgot To Mention.

All PORTS Are Trunked Ports. No Access Ports. And Default Meraki Vlan On My Switch Is 99.

stephenw10

So how do you have pfSense configured?

As long as you have a VLAN 99 interface configured and it's parent is connected to the switch (since all ports are carrying VLAN 99) it should work.

Steve

classifed200

@stephenw10

I have vlan 99 configured. On the interfaces as OPT1

stephenw10

Ok, so what is not working here? How are you testing it?

classifed200

@stephenw10 the switch won’t accept the connection light stay orange

classifed200

@classifed200 also sorry this is a meraki switch

marvosa

@classifed200 said in PFSense & Cisco Switch MS220-24p:

@marvosa
I’m doing right now all switch ports are trunked. And lan connect to port 2. No access ports. This is all on vlan 99 for whatever reason cause the switch was config that way a while ago

This doesn't make any sense. What does all ports are trunked and "this is all on vlan 99" mean? Are you trying to say that your trunk ports are configured for native vlan 99? What are you trying to connect to your trunk ports?

classifed200

@marvosa
Uh I don’t really know cause but most of them are trunked native 99

marvosa

@classifed200
What are you going to connect to your switch ports?

classifed200

@marvosa Its Gonna Be My PoE Access Point And Computers/Truenas server

marvosa

@classifed200
If you're going to tag certain VLANs to your SSID's, then trunks make sense for your AP's. However, your PC's and servers should be connected to access ports.

classifed200

@marvosa do I need the pfsense on a trunked port?

marvosa

@classifed200 said in PFSense & Cisco Switch MS220-24p:

@marvosa do I need the pfsense on a trunked port?

If you want to utilize VLANs, then yes... you have to connect PFsense to a trunk port on your switch.

classifed200

Welp... I feel dumb.
Apparently the switch was blocking any other DHCP Servers..

Stewart

@classifed200

I'm assuming you are saying you got it fixed? We use SG switches which may or may not be the same. The port on the switch that plugs into pfSense is tagged on all VLANs. Nothing is untagged on that port, even the native VLAN of the switch. Then, ports that the PCs connect into become untagged on the vLAN they should access on. I make all my ports trunks as well if they are going to carry more than 1 VLAN.

natbart

A Meraki switch is cloud managed and needs to be able to see the internet for it to work.

Here is what the lights mean: https://documentation.meraki.com/Go/Meraki_Go_-_Decoding_the_LED_Light

I would reset the Meraki switch to default and then connect to pfsense box.

See restore button: https://documentation.meraki.com/MS/MS_Installation_Guides/MS_End_of_Sale/MS220-24%2F%2F48_Series_(EOS)_Installation_Guide

I have number Meraki switches and if they cannot see the internet they do not boot.