[SOLVED] Laptop (One nic) + HP ProCurve 1810G-8 Vlan setup questions
-
After finding out that the Expresscard port on the laptop I am going to use for pfSense is dead, I found a great deal on a ProCurve switch.
I am a bit confused after reading pages of info on here and other sites as to the best, or only way for that matter to setup the WAN, LAN and other connections with only one physical nic and vlans.
I currently have pfSense installed (full install) on a thumb drive on my HP laptop with one Physical Intel Nic with the nic noted as fxp0.
Current console vlan setup reports:
WAN: fxp0_vlan10
LAN: fxp)_vlan20 -> 192.168.2.25/24I have two vlan's setup on the 1810 ProCurve
10 for WAN and 20 for LAN
The WAN(10) tagged on port two and three excluded for all others.
The LAN(20) tagged on port 2, excluded on 1 and 3, un-tagged on all others.
I don't have any trunking as I have read tagging is the method used on the HP switches.
I can set my computers IP to a static ip of 192.168.2.15 and connect to port one of the switch to manage it and connect to port 4 and connect to the web GUI via 192.168.2.25 with the current setup.
Currently my cable modem is plugged into port 3 of the ProCurve but pfSense is not grabbing the DHCP from my provider like it does with my Netgear Router.
I believe my issue lies with the vlan setup on the switch but need direction for the following end result:
Cable Modem>HP ProCurve>pfSense (laptop/one nic)>24 Port Gigabit Switch (For wired workstations)
>Netgear Router in static mode for wireless connections
>XBox 360 (so I can limit bandwidth to it)I believe I should have the Xbox on it's own VLan so I can control the amount of bandwidth it uses unless there is a way to do that down the line if it was connected to the 24 port switch.
All traffic should pass through the firewall with no DMZ or non-firewalled devices.
Thanks!
-
Try this,
WAN:
Port 2 Tagged 10 - To Pfsense
Port 3 UNtagged 10 - to cable modemLan
Port 2 Tagged 20 - To Pfsense - same as above, additional vlan on trunk.
Port 1,4,5,6,7,8 Untagged 20 - where you plug in your computers/devices/dumb switchesYou can, but don't need to create another vlan for your Xbox, if you want to do that, then for example set port 5 to UNtagged 30 where you plug in your xbox. and add vlan 30 tagged on port 2, and create another vlan interface on pfsense.
It might also make sense to move the switch's management vlan to your lan vlan (20)
There should be no Untagged data on port 2, the switch should show the pvid as nothing/empty. Default vlan should be denied/excluded from this port.
Remember to save the config as the switch will lose it on a power cycle. -
Try this,
WAN:
Port 2 Tagged 10 - To Pfsense
Port 3 UNtagged 10 - to cable modemLan
Port 2 Tagged 20 - To Pfsense - same as above, additional vlan on trunk.
Port 1,4,5,6,7,8 Untagged 20 - where you plug in your computers/devices/dumb switchesYou can, but don't need to create another vlan for your Xbox, if you want to do that, then for example set port 5 to UNtagged 30 where you plug in your xbox. and add vlan 30 tagged on port 2, and create another vlan interface on pfsense.
It might also make sense to move the switch's management vlan to your lan vlan (20)
There should be no Untagged data on port 2, the switch should show the pvid as nothing/empty. Default vlan should be denied/excluded from this port.
Remember to save the config as the switch will lose it on a power cycle.Changed everything as you suggested. pfSense now grabs an IP address from my provider via DHCP. But for whatever reason I cannot see the internet on the LAN side. Do I need to change a setting in pfSense to assign IP's or something different to make it work? DHCP is not turned on the LAN side currently.
EDIT: I think I need to configure the DHCP server before devices will get an IP address, correct?
-
Correct. dhcp server is needed
-
Setup DHCP server and it's working fine now. Thank you for all the help!