Create 2nd LAN VLAN use for Unifi device MGMT
-
Hello; I am hoping someone can provide some assistance with what I am trying to accomplish.
My current setup is
USW-Agg Switch (192.168.2.40)
US-8-60W (192.168.2.41)
US-48-500W (192.168.2.42)
U6-Pro AP (192.168.2.43)
U6-Pro AP (192.168.2.44)
U6-Pro AP (192.168.2.45)
VLANs: IoT (10). NoT (20), Cams (30) and the default Native 1 (untagged) as my current LAN
Cloud Controller is on Unraid Docker via Proxmox VM on LAN (192.168.2.x /24)Pfsense Interfaces:
LAN = 192.168.2.x/24 = Un-Tagged
iot = 10.10.10.x/24 = VLAN 10
not = 10.10.20.x/24 = VLAN 20
cam = 192.168.10.x/24 = VLAN 30I am now trying to setup a new LAN VLAN (100) to replace the current untagged network from Unifi and then in pfSense use the same LAN interface where the current DHCP server is on (192.168.2.x/24)
This is how my pfSense looked like when i also changed the parent LAN interface to vlan 100. And this is where is where i feel the issue is, I changed the parent interface to also a VLAN directly. But i am lost at this part. I am not sure how I can get this going? I need to create a LAN VLAN 100 using the current LAN network 192.168.2.x
-
@iptvcld
Did you also add the new VLAN to the device, which is connected to pfSense LAN? I guess, this is the switch. -
@viragomann Yes the Unifi side has the vlan as well, but does it looks right on what i did on pfSesne? changed my parent LAN interface to bxe1.100 and i have a feeling since my other LANs reference that parent LAN and since I now changed the parent, its would mess it all up.
-
@iptvcld said in Create 2nd LAN VLAN use for Unifi device MGMT:
i have a feeling since my other LANs reference that parent LAN
?
The don't reference to the LAN, they are just VLANs on the same hardware NIC.
There is no need to have any untagged interface activated on this NIC. -
@viragomann Understood; So even if i tag all my LAN data from unifi, the network gear them selves are by default all untagged traffic - if I dont have a untagged interface in pfSense, how will the network gear get internet access and talk back to the router.