Locked out after adding VLAN

Treefrog · Nov 26, 2022, 2:33 AM

Interfaces: WAN (igb0) + LAN (igb1)

My lan firewall rules are simple:

anti-lockout rule enabled and working
pfblocker
allow Lan to any

Then I create my first VLAN:
Parent interface: igb1 - lan
VLAN tag 10
Priority 0

Then, I go into interface assignments:
Change interface Lan network port
FROM "igb1"
TO "VLAN 10 on igb1 - lan"
Save

I am locked out and have to use the console to revert the change.
Thinking maybe I didnt have my switch correctly setup to tag traffic as vlan 10, I plugged my computer directly into igb1 and it still did not work.

Do firewall rules have to be recreated after assigning a vlan to an interface network port?

viragomann · Nov 26, 2022, 7:55 AM

@treefrog said in Locked out after adding VLAN:

Then, I go into interface assignments:
Change interface Lan network port
FROM "igb1"
TO "VLAN 10 on igb1 - lan"
Save
I plugged my computer directly into igb1 and it still did not work.

You have to configure the computers NIC for VLAN 10. Did you?

johnpoz · Nov 26, 2022, 1:06 PM

@treefrog

Assign the vlan to an interface, create your firewall rules. Then you can move lan to the interface.

But yeah @viragomann is correct if you plugged the pc directly into the pfsense interface you would had to set the PC to do tagging?

Out of curiosity why do you want your lan tagged?