Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multiple networks on the same VLAN

    Scheduled Pinned Locked Moved Routing and Multi WAN
    3 Posts 2 Posters 875 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P Offline
      Pandry
      last edited by Pandry

      Hello there!
      I am writing this even if I found old posts because maybe something's changed.

      TL;DR: pfSense on a VM, multiple virtual interfaces (each with a different network) connected to the same physical network. How bad is it gonna backfire?

      Context:
      Our infrastructure is on Hetzner (why this is important in a minute)
      Due to several reasons, we started migrating our physical firewalls into virtual machines (with a network refactoring, splitting a big /16 (logically partitioned) into multiple /24).
      The problem is that our provider (Hetzner) limits the number of VLANs to 5 (4 of which were already occupied, so we were left with 1).
      I already tried contacting the provider's support, and it looks like the limit is not increasable.

      What I did:
      After searching on the net, I did not find any satisfying answers on how to approach the issue, so I managed to add multiple virtual network interfaces to the pfSense VM (one per network).
      All the virtual interfaces are connected to the same VLAN in this case.
      I am gonna limit the IP of each VM via the Hypervisor firewall (to avoid spoofing on other networks) and we are not going to use DHCP.

      My question:
      How bad is this gonna backfire on us?
      Could there have been a better way to do this? Maybe directly in pfSense?
      From my research, I did not find any (new) posts or content on how to manage this.

      Thanks in advance!

      NogBadTheBadN 1 Reply Last reply Reply Quote 0
      • NogBadTheBadN Offline
        NogBadTheBad @Pandry
        last edited by

        @pandry Could you use QinQ / Stacked Vlans ?

        https://docs.netgate.com/pfsense/en/latest/interfaces/qinq.html

        Andy

        1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

        P 1 Reply Last reply Reply Quote 0
        • P Offline
          Pandry @NogBadTheBad
          last edited by

          @nogbadthebad said in Multiple networks on the same VLAN:

          https://docs.netgate.com/pfsense/en/latest/interfaces/qinq.html

          Hi @nogbadthebad!
          Unfortunately, I tried looking into it before setting the whole thing up (with the idea of creating an "overlay" between the hypervisors), but I found reports of it not being possible on my hosting provider.
          To be honest, I did not try myself (also because I did not want issues with reduced MTU).
          I sent a ticket to the support, but I'm not feeling lucky about this

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.