Help to route to pfsense from cisco switch3560G



  • Hi pls help
    attached is my network and subnet plan,pfsense as gateway 192.168.3.1/24
    How to make  vlan2-7 reach/access vlan8(belong to all servers)
    How to make all vlan to get access to internet thru pfsense
    kindly help,am new to network
    what to be done on all 3 cisco switch and pfsense pls
    much appreciation
    J






  • @lp_code:

    Hi pls help
    attached is my network and subnet plan,pfsense as gateway 192.168.3.1/24
    How to make  vlan2-7 reach/access vlan8(belong to all servers)
    How to make all vlan to get access to internet thru pfsense
    kindly help,am new to network
    what to be done on all 3 cisco switch and pfsense pls
    much appreciation
    J

    Well… I suppose your Cisco switches are "L3 aware" (capable of ip routing). So, the quickest, the easiest and the cleanest way to do it is:

    • to create a new vlan - let's call it internet vlan - with a new ip range.

    • to configure an ip address of this VLAN on you pfSense LAN interface

    • to configure an ip address of this VLAN on one of your 3560 - let's say the 3560 in building A

    • to add a static default route (ip route 0.0.0.0 0.0.0.0 <pfsense_ip_address></pfsense_ip_address>) on the same 3560

    • to use your main 3560 as inter-vlan router by configuring it as default gateway of all your VLAN's.

    Of course this design is not valid if your 3560 are not L3 capable…

    But I've some questions:

    • Why don't you protect your mail server behind the pfSense?

    • Why do you need so much VLANs?


Log in to reply