LAN x = VLAN x - how to setup?
-
Hello,
I want to connect each LAN port to a VLAN in SG2100 device without using any managed switches. How can I do it? -
You can certainly add a VLAN to a pfSense port. However, perhaps you could describe what you're trying to do.
-
@JKnott Thank you. I want to connect WAN and WAN_VPN to certain LAN ports by using VLAN configuration of SG2100. I am confused with "tagged" and "untagged" and I tried a setup VLAN, interfaces, firewall, etc. but I could not connect to the internet. What else do you need to know? Can you explain me how to do it?
-
@febu said in LAN x = VLAN x - how to setup?:
I want to connect WAN and WAN_VPN to certain LAN ports by using VLAN configuration of SG2100.
What do you mean exactly with "connect"?
pfSense connect any attached network. If you want to access a device in the LAN1 from any in LAN2, the device will send its request to pfSense (the default gateway) and pfSense will forward it to the destination device.
No need to mess with VLANs here. -
Remember only LAN has a default run to allow access. All other networks (Virtual and Physical) have no default rules to allow access off network.
-
@febu said in LAN x = VLAN x - how to setup?:
@JKnott Thank you. I want to connect WAN and WAN_VPN to certain LAN ports by using VLAN configuration of SG2100. I am confused with "tagged" and "untagged" and I tried a setup VLAN, interfaces, firewall, etc. but I could not connect to the internet. What else do you need to know? Can you explain me how to do it?
You can find out a bit about VLANs here.
What a VLAN does is allow separate networks to be carried over the same cable. VLANs are logically separate, but not physically. When you create a VLAN, a tag is inserted into the Ethernet frame, which includes the VLAN number. Normally, Ethernet does not have that tag. On my home network, I have a VLAN for my guest WiFi, which uses the same cable and Ethernet port as my main LAN. If you don't have more than one network on a cable, you don't need a VLAN on that cable. As for that VPN, you generally use routing to send the VPN traffic where you want it, not VLANs. In fact, you can route several networks over a VPN, with routing. I don't have any experience with that SG2100 so I can't help there.
