Separation between the wireless and wired network help



  • Need Help
    The pfsense has 4 network cards
    Card 1 wan1
    Card 2 wan 2
    card 3 lan (to Switch) from Switch to all Points at home)
    card 4 wlan from pfsense to ap

    now i have Two more ap
    and i dont have a way to connect them

    In theory
    This should be like that
    card 4 to Switch to ap

    I have no more network points
    Is there a way to make a distinction between wireless and wired
    On a single network
    Such as subnet

    Instead of spending another second network cable and switch

    If so
    How do I configure it in pfsense


  • Netgate Administrator

    Do you need to have each AP on a separate isolated subnet?
    Depending on what your access points are you may be able to use VLANs directly. Alternatively you could use a small VLAN capable switch like the Netgear GS108T (or even the GS105e).

    Steve



  • Do you need to have each AP on a separate isolated subnet?

    I want all the AP sitting on same network

    Can I use sub network ?

    192.168.0.1-50
    192.168.0.50 -100

    I remember something like that
    But I do not know one hundred percent

    I remember that it was possible to divide a single network into two
    And they both sit on the same cable infrastructure

    It is possible, or am I mistaken ?

    AP are routers that I use as AP

    edimax br-6204wg
    d link dsl-g604t
    level one wbr 3406tx


  • Netgate Administrator

    @firefox:

    I want all the AP sitting on same network

    Well just connect them all to the same NIC in pfSense. All of those routers have a built in switch so just chain them together. All your wireless clients will then be on the same subnet. It won't matter which AP they connect to.

    Steve



  • Perhaps I did not explain correctly

    I want the wireless clients Will be on a different network from The wired clients

    192.168.0.1 wired clients
    There is a wired network all over the house

    192.168.1.1 wireless clients
    There is no wired network all over the house
    There is no other connection to this network

    And this the problem

    Can I use the  wired network For both networks


  • Netgate Administrator

    But you already have two NICs to separate wired and wireless traffic, card3 and card4.  :-
    Are you saying that you need to position these extra APs such that they can only connect to the existing wired network?

    Steve



  • To have the granularity of control you are looking for, stephen was right.  You need to invest in a cheap managed VLAN switch that allows you to use tagged and untagged ports.



  • What is your subnet?  Is it straight class C?  /24?  If so, you'll have to change the subnet scheme in order to separate wired from wireless.  If you can't change the subnet scheme, You'll have to use VLANs to separate the data.


  • LAYER 8 Netgate

    You're going to need another switch.  Either another unmanaged for your wireless APs or one that does VLANs so you can do both networks on one switch.

    A new unmanaged will be cheaper and not require you to learn anything new or reconfigure anything.



  • i am using separate  lan card for each network, separating the wifi from the wired network, also separating the wifi into groups connecting each group into their own separated lan card. i think this is the simplest way and its working fine with me.

    hadi57



  • But you already have two NICs to separate wired and wireless traffic, card3 and card4.  :-
    Are you saying that you need to position these extra APs such that they can only connect to the existing wired network?

    no
    i want them To connect to card 4
    But I do not have this option
    So I want to cancel card 4
    and Split the network on card 3 into two

    What is your subnet?  Is it straight class C?  /24?  If so, you'll have to change the subnet scheme in order to separate wired from wireless

    it is 192.168.0.1/24 (see image)

    how do i do that
    That's what I'm trying to know
    Is there an option in pfsense for two networks on one physical network
    If I will choose there a smaller number
    Will I have the option For another dhcp on the same network card
    How to do it

    You're going to need another switch.  Either another unmanaged for your wireless APs or one that does VLANs so you can do both networks on one switch.

    A new unmanaged will be cheaper and not require you to learn anything new or reconfigure anything.

    It would be easiest to buy a new switch
    And put new cables in the wall
    Up to location That the AP would be

    I can not do that right now
    It's a lot of work
    And more money at the moment I do not have

    So I want to do it on the existing network




  • You should be looking for a nice, cheap used vlan switch…  Or a miracle...



  • Bummer
    I wanted to avoid drawing  cable for new points

    In any case
    Thanks everyone for trying to help



  • You won't need more cable if you get a VLAN switch - Thats sort of the point of the thing.


  • Netgate Administrator

    @firefox:

    But you already have two NICs to separate wired and wireless traffic, card3 and card4.  :-
    Are you saying that you need to position these extra APs such that they can only connect to the existing wired network?

    no
    i want them To connect to card 4
    But I do not have this option
    So I want to cancel card 4
    and Split the network on card 3 into two

    This confuses me. You say you're not restricted by the location of the new access points. So why can't you connect them to card4 along side the existing access point?

    Your later responses seem to indicate that you need to to connect them to the existing wired network because you only have single cabling to that location.
    In which case you can use VLANs but you will need a VLAN capable switch. They are not that expensive. If you don't need gigabit bandwidth you could split one cat5 run into 2 100Mbps connections. You could use an ethernet over powerline solution (or over co-ax if you have that). You might be able to setup the new APs as repeaters instead and do it wirelessly.

    Steve



  • This confuses me. You say you're not restricted by the location of the new access points. So why can't you connect them to card4 along side the existing access point?

    Just the opposite

    I will try to explain
    Maybe it does not go well then forgive me

    Our house has seven rooms
    Each room has two or three network points

    All points are occupied
    No Vacancy

    In addition
    There is a single point at home one side connected to pfsense
    And on the other side of AP
    This point is connected to the card 4

    Everything comes to the switch being held in my room

    Two of the rooms have a reception problem
    Where I want to put ap
    But I have no connection available

    The only option to build a new line for every room

    If you don't need gigabit bandwidth you could split one cat5

    i do need gigabit bandwidth

    I probably tomorrow or the day after tomorrow will pave two new lines

    Hope I explained well


  • LAYER 8 Netgate

    The point is you can tag multiple VLANs across a single cable.  Put a switch at the end point, and break out the VLANs there.

    I can just about guarantee nobody will notice you're running two VLANs over a gig-e link, speed wise.



  • What he said…  ^


Log in to reply