Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Can I have one pfSense router and two different subnet (DHCP) from the same box?

    Scheduled Pinned Locked Moved
    DHCP and DNS
    3
    6
    4.5k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      torontob
      last edited by

      Hi,

      So, not to cheap out on the hardware, but to keep failure rate down and to keep things simpler and contained in one box, is it possible to assign vr1 as LAN-1 and vr2 as LAN-2 and assign each interface a difference subnet from the DHCP server so that if a computer is connected to vr1 then it gets 192.168.0.0/255.255.255.0 address and if it's connected to vr2 then it picks up 172.16.0.0/255.255.255.0 address and finally vr0 is connected to WAN from ISP.

      I am also looking to get a managed 48 port switch and split 24/24 ports and connect port 1-24 to vr1 and port 25-48 to vr2 so they pickup difference IP subnets.

      Please let me know if this is possible or if I need extra equipment and a second pfSense router.

      The current hardware is: Alix2d13 (3 NIC ports).

      thanks

      1 Reply Last reply Reply Quote 0
      • W
        wallabybob
        last edited by

        Yes, that's possible. I resume you'll partition the ports on the managed switch so ports 1 to 24 are on a different LAN from ports 25 to 48.

        1 Reply Last reply Reply Quote 0
        • T
          torontob
          last edited by

          Hello, Thanks for the input.

          That is for the switch. What about the pfSense Alix2d13 router? I only see one DHCP server under Services. How can I have the DHCP server to supply the second vLan a different subnet. I think what I am asking is two DHCP servers on the pfSense. Does that make sense?

          Thanks

          1 Reply Last reply Reply Quote 0
          • dotdashD
            dotdash
            last edited by

            Once you enable the second LAN interface, you should see another tab under DHCP.
            As a side note, while you could split a managed switch into two halves and plug an interface into each side, it seems much simpler to just create vlans for LAN1 and LAN2 and just make the pfsense interface a trunk.

            1 Reply Last reply Reply Quote 0
            • T
              torontob
              last edited by

              Thanks for the great tip. I do see the LAN-2 now in DHCP.

              I heard pfSense doesn't do good on the vLAN or at least not with the Alix2d13 board. However, I am willing to try that if it simplifies things. So you are suggesting that I can create multiple (two or more) vLANs on LAN-1 interface of pfSense and connect it to the switch without using the vLAN feature of the switch.

              I am not sure if I picked up the right thing.

              Thank

              1 Reply Last reply Reply Quote 0
              • dotdashD
                dotdash
                last edited by

                Getting off topic, but I haven't had trouble using simple vlan setups on an Alix.
                You would create vlan interfaces for each lan with the proper tags, use the vlan interfaces for LAN and LAN2.
                It's easy to shoot yourself in the foot when reconfiguring, I like to do it via the WAN side.
                Then make sure the parent interface on pfsense is connected to a trunk port on the switch.
                There is good info on vlan configurations if you search about a bit.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post