Transparent firewall with Vlan tagging



  • Good Day

    I am trying to setup pfsense RC2 as a transparent firewall with vlan tagging. The topology is as follows

    Switch One <-> (em0) pfsense (em1 with vlan tagging) <-> Switch Two – Vlan’s

    The vlan’s look like they are coming up they have a * character beside them when the boot messages are displayed. I have created an interface for each of the vlan’s and bridged them with the wan interface. I also do not have the bridging filtered turned on because I just want to get it working first.

    I am trying to ping from a machine in one of the vlan’s Switch Two to a machine connected to Switch One with no success. Am I on the correct path here? Has anyone done this?

    Any help would be appreciated

    -Ashley



  • Do I get you right that you have bridged multiple vlan interfaces at em1 to em0? In version 1.0 multiple interface bridging is not supported. This is something that is already in head (bridgegroups).

    I also recommend upgrading to the latest snapshot as we added some bridge status info at status>interfaces. You can find the latest snapshot here: http://pfsense.com/~sullrich/1.0-SNAPSHOT-09-05-06/



  • I think we are speaking in the same terms. I have vlan 102-124 defined on switch two. I have created 22 opt interfaces for each vlan. I am then trying to bridge each of those interfaces (valns) to the wan interface. Does that make sense and is it supported?

    -Ashley



  • That is not supported atm (at least not in 1.0). You can only bridge one interface to another non bridged interface atm.



  • @hoba:

    That is not supported atm (at least not in 1.0). You can only bridge one interface to another non bridged interface atm.

    Ok so its a one-to-one relationship right now. I can only bridge to the wan interface once. Correct?



  • Correct.


Locked