Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    What is the correct way to create a bridged interface with DHCP in this scenario

    General pfSense Questions
    2
    5
    1.6k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      Trel
      last edited by

      LAN and OPT1 are my interfaces.
      I want to bridge them (and possibly later add OPT2).

      What's the proper way to do this and have a DHCP server (which interface should it ideally run on)?

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        The dhcp server should run on the bridge interface.

        This might help you: http://forum.pfsense.org/index.php/topic,48947.msg269592.html#msg269592

        Stve

        1 Reply Last reply Reply Quote 0
        • T
          Trel
          last edited by

          @stephenw10:

          The dhcp server should run on the bridge interface.

          This might help you: http://forum.pfsense.org/index.php/topic,48947.msg269592.html#msg269592

          Stve

          Thanks, that looks quite helpful.
          (Hope I don't lock myself out when I do this tonight)

          One thing I want to clarify though
          Could you possibly elaborate on what the purpose of this step is

          2. Switch bridge filtering from the bridge members onto the bridge itself (assuming you don't need to apply firewall rules between devices on the bridge/switch). Go to System: Advanced: System Tunables: and edit the two values.
          Change net.link.bridge.pfil_member to 0.
          Change net.link.bridge.pfil_bridge to 1.
          Apply these changes.

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by

            By default filtering is on the bridge member interfaces and not the bridge interface itself. If you are hoping to the use the interfaces like a switch, as you would on a soho router, you probably want one set of firewall rules to apply to all the bridged interfaces. Hence the system tunable change. If you don't do that then you need to add rules to each interface in the bridge.

            It deppends how you are using the bridge. You can also have filtering both places if you want to.

            Steve

            1 Reply Last reply Reply Quote 0
            • T
              Trel
              last edited by

              @stephenw10:

              By default filtering is on the bridge member interfaces and not the bridge interface itself. If you are hoping to the use the interfaces like a switch, as you would on a soho router, you probably want one set of firewall rules to apply to all the bridged interfaces. Hence the system tunable change. If you don't do that then you need to add rules to each interface in the bridge.

              It deppends how you are using the bridge. You can also have filtering both places if you want to.

              Steve

              Ok, yes, then I would want to make that change.
              Sounds good.  Thanks for the explanation.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.