Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    I need assistance to create company subnets

    Scheduled Pinned Locked Moved
    Off-Topic & Non-Support Discussion
    4
    4
    720
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      bkyuksel
      last edited by

      Hi friends,
      I really need some assistance to create subnets in my network. Here some details of our configuration below. And I want basicly 4 different subnets as a sales group, developer group, r&d group and guest network. So basicaly what I want is to insulate each groups from each other : sales group will have full access to nas server and other all servers. dev group will have only access to internet and printers, r&d group will have also full access, guest will only have internet access but not LAN access to servers etc. Currently I have a ip pool that everybody connects but there are some basic issues that I want to prevent as I mentioned. So what is the basic way of doing it? Here are some hardware details,
      We have pfsense installed up and running.
      I have an ip pool currently which everybody can connect through access points and switches.

      • 7 access points connected to switches (no-smart or managable switch)
      • Switches connect to a main patch panel in the server room.
      • There are 2 internet providers currently working.
      • Every devices connect to 1 main network.
      • I need to create 4 different subnets and routing between subnets. For ex. Dev group needs printer and some other devices but not everything.

      I will be so glad if I could hear from someone.
      Thank you so much.

      johnpozJ 1 Reply Last reply Reply Quote 0
      • J
        JailBird4
        last edited by JailBird4

        This post is deleted!
        1 Reply Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator @bkyuksel
          last edited by

          @bkyuksel said in I need assistance to create company subnets:

          7 access points connected to switches (no-smart or managable switch)

          Well that is a problem.. For you to segment your network you either need vlan capable devices switches and AP. Or you need to do it full physical where each network is on its own hardware.

          Pfsense is capable of doing vlans - but you need the rest of your infrastructure to support it. So you need at min a vlan capable switch to use as core switch, downstream switches can be dumb as long as you plan on all devices connected to these dumb switches to be in the same network/vlan.

          Same goes for your AP.. if they are dumb then you would plug them into different switch port that is only on the vlan you want all wireless devices to be on that connect to that AP.

          I would really suggest you invest in some vlan capable switches and AP. Doesn't have to break the bank.. This can really be done on a shoestring budget if need be..

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.03 | Lab VMs 2.7.2, 24.03

          1 Reply Last reply Reply Quote 0
          • P
            Proximil
            last edited by Proximil

            This post is deleted!
            1 Reply Last reply Reply Quote 0
            • First post
              Last post