Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Assistance setting up basic PFsense with VLans

    Problems Installing or Upgrading pfSense Software
    2
    3
    671
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W
      wanderingmind25
      last edited by

      Hello, I am in the process of moving away from a Meraki MX60 Meraki switch and Meraki WIFI AP. Cisco/Meraki equipment is nice but it comes at a cost and a time limit for renewal. I have another year before my time runs out but wanted to get a head start. Also I liked the functions of PFsense like AV and WAN caching and well…I like to learn and the web GUI’s of Meraki is just too easy.
      Anyway my issue is that I setup an HP dl360 g4 server as my PF box. This is only a test at this point but I want to make sure I have a working environment before I replace my equipment. I loaded the software and went about configuring. I am able to do a simple configuration, 1 WAN, 1 LAN connection however soon as I bring in VLANs everything breaks.

      Still only two physical NIC connections and for the moment the WAN NIC plugs into my current network’s LAN. I can’t seem to get DHCP to assign addresses and I cant talk to the PF via its lan interface on any of the VLAN. I have gone over both my switch config as well as PF and nothing stands out. any suggestions or area’s I should look into? For switches I have Zyxel GS1900 and its interface is fairly straight forward so I don’t believe I have it configured wrong. But ill include screen shots of both.

      Any assistance would be greatly appreciated!
      pf1.png
      pf1.png_thumb
      pf2.png
      pf2.png_thumb
      pf3.png
      pf3.png_thumb
      pf4.png
      pf4.png_thumb
      pf5.png
      pf5.png_thumb
      pf6.png
      pf6.png_thumb
      pf7.png
      pf7.png_thumb
      pf8.png
      pf8.png_thumb
      pf9.png
      pf9.png_thumb

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        Do some research on VLANs and what the terms tagged and untagged mean.

        I have no idea what VLAN 1 on bge0 will do.  In general, VLAN X on bge0 means traffic tagged with VLAN X.  I am pretty sure you cannot tag VLAN 1 (the default untagged VLAN) so I don't know what that will do.

        If you want to mix tagged and untagged traffic, assign, simply, bge0 for the untagged traffic and VLAN X on bge0 for tagged.

        If your switch supports a "management VLAN" you might want to change it to a tagged VLAN and get off VLAN 1/Untagged entirely.  It might only accept management connections on VLAN 1.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • W
          wanderingmind25
          last edited by

          Ill give that a shot, removing vlan 1 and making it just a pass though port. I thought the PVID on the switch defaulted to vlan 1.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.