Subscription VPN on single VLAN?
-
Want to know if there is a way to configure connection through a subscription service vpn on a single VLAN only.
To be more clear network has two VLANS:
VLAN A, for network and normal internet connection
VLAN B, that is segregated from talking to VLAN A and connects to the internet through a VPN service (eg/ Nord).
Is this possible and how is it accomplished at the router level?
-
Sure you can do that. Just use policy based routing:
https://docs.netgate.com/pfsense/en/latest/multiwan/policy-route.htmlSteve
-
@stephenw10 Thanks. Are you sure this is possible while completely segregating the two VLANS (meaning DTP disabled etc..) ?
-
Two VLANs are just two interfaces as far as pfSense is concerned. Yes, I'm sure you can policy route all the traffic from one interface via a particular gateway if that's what you need.
DTP would all be in your switches.Steve
-
@stephenw10 Two "interfaces" meaning that you have to have at least two physical Ethernet/Lan receptacles on the box. So an 1100 is out then... or can you use opt? What about a quad port intel NIC ? Might I be able to get by without a switch at all?
-
No not two NICs, two interfaces, which can be a VLAN.
Interestingly the SG-1100 only has one NIC anyway. It uses VLANs internally to create 3 separated interfaces.
Steve
