Question about VLANs and interfaces
-
Dear forum, I have a question regarding VLANs and interfaces.
Currently, I have O2 (I live in spain) and my own ONT (ubiquity loco nano). The ISP delivers two VLANs, 6 for internet and 3 for VoIP. Internet needs PPPoE to work.
On pfsense it's working like a charm and all my VLANs has access to internet. Never tried VoIP so far.Recently I bought a managed switch DLINK DGS-1510-20, did the proper setup to VLAN trunk on port 4, set 5 to 10 for internet VLAN and works perfectly.
my question is: it's possible to have, let's say, port 3 setup with vlan 3 untagged in order to attach the ATA box? If it's possible, how can I achieve it? It only needs to set VLAN 3 access on port 3? I need to bypass a VLAN on pfsense? (I'm not familiar with any concept related to bypass a VLAN, I'm asking this because the parent interface of the vlan 3 is wan)
Thanks in advance!
-
If these tags come off your ONT 6 and 3.. Just run that through you switch.. Before you connect it to pfsense. Now you can put any port you want on that switch to be in vlan 3 or 6, etc..
example..
You can use whatever other vlans you might wan on your "lan" side..
If you put your tagged vlans into the switch - you can either send them somewhere else still with tags like to pfsense wan.. Or you can just put them on any port on the switch untagged.
You can really create as many vlans you want, within the limits of how many vlans the switch supports and how many ports it has, etc.
-
@johnpoz Thanks for your answer. I'm aware of that option, but it will require 2 extra ports on my switch. There is no way to "bridge" (or the word who apply here) vlan 3 from wan to a lan vlan? Thank you! Regards!
-
Bridge anything would be horrible choice..
If your out of switch ports - buy a $30 vlan capable switch to use between your ONT and pfsense and allow you to connect your ATA to its vlan 3.
Pfsense is not meant to be a switch, unless you have a model that has a built in switch.. What your wanting to do is done at the switch level.. Not your router ;)
edit: I show the netgear sg305e on amazon right now for $20..
-
@johnpoz Thanks a lot John! you are totally right!. Maybe could be an interesting idea to have support for virtual switches on pfsense? Like on GNS3 or Vmware? Have a nice day!
-
-
@faktorqm said in Question about VLANs and interfaces:
Maybe could be an interesting idea to have support for virtual switches on pfsense?
While it might have some limited use case in like a lab - anything done in software be it you call it a bridge or virtual switch still not an optimal sort setup. If you really want a "switch" in your router box - get one of the many different appliances that have this.
I personally have no real use for such hardware or setup.. But maybe that is just me ;) We have some 3100s in use which have switch ports. And have turned them into their own ports via switch config. But would of much rather had discrete interfaces.. It was just that the 3100 worked at price point and via the switch ports we could get number interfaces we needed.
-
@johnpoz as I have 16 ports rj45, 2 sfp ports and 2 sfp+, I will buy 2 sfp to rj45 adapters to increase the port count in 2 xD it will cost me around 15€ second hand. Thank you! Regards!
-
@faktorqm said in Question about VLANs and interfaces:
increase the port count in 2 xD it will cost me around 15€ second hand
There you go - much better plan than trying to do some nonsense bridge thing in software ;)