Multiple LAN Interfaces, Same Subnet

illizit · Aug 18, 2012, 11:03 PM

Hello,

We currently have Pfsense installed in a virtualized environment. We have configured a new VLAN (VLAN 7) in our switches and have added a network interface within Pfsense assigned to this VLAN. This is done within VMWARE, therefore pfsense is unaware of the vlans. We have two network interfaces in pfsense, separate vlans (at the vmware level) and both interfaces are on the same subnet (192.168.1.X). when trying to create a firewall rule how will pfsense know which interface to route it to? I can guess this is not a supported setup. Is there anyway to achieve what I'm trying to do here without having different subnets?

Thanks in advanced.

heper · Aug 18, 2012, 11:31 PM

search for bridge setup
http://doc.pfsense.org/index.php/What_is_a_bridged_interface_and_how_would_one_be_used%3F

cmb · Aug 19, 2012, 2:44 AM

You'd have to bridge to accomplish that, but that may not be an option depending on your specific scenario (you'd be completely combining the two VLANs into one network). In general, you can't have the same IP subnet on two different interfaces of any firewall or router.

illizit · Aug 19, 2012, 5:46 AM

I know you can bridge them however, I am trying to keep them separate; they should not be able to communicate with each other.

I'll look into another solution, thanks for the help.

stephenw10 · Aug 19, 2012, 11:33 AM

When the interfaces are bridged you can still apply firewall rules to prevent whatever communication you don't want.

Steve