POE Access Point

bikemike · Dec 1, 2015, 7:33 PM

After doing some investigation, it appears the ideal situation is to plug the AP directly in to an open port on the pfSense device. In this case, I have a Cisco POE based AP which needs to go through a POE capable switch first. I want the AP to be on its own network so I can control access, provide DHCP and control access via rules on the pfSense device. How would I go about doing this when the AP is not directly connected to the pfSense box?

Doing some further reading it appears I would need a managed switch where separate VLAN's could be created by port then map those back to pfSense?

johnpoz · Dec 1, 2015, 7:31 PM

You prob don't really need a switch, just a POE injector.. But connecting to a switch would still allow you to connect to your pfsense port. Most poe switches I have ever seen support vlans..

Derelict · Dec 1, 2015, 7:32 PM

You can always just use a PoE injector if you really want to connect it directly to the pfSense port.

But, in general, you use a managed switch and VLANs to get the most out of your APs.

bikemike · Dec 1, 2015, 7:35 PM

First off, thanks for the quick reply!

Sounds like I am moving down the right path then. The switch I am looking at has four ports POE and four non-POE. I already have an injector for a camera, but since my AP is now POE, would be nice to have both options in the same device. Sounds like I simply need a manged switch then. This helped a lot actually:

http://keabird.com/blogs/2014/08/03/configuring-vlan-on-pfsense/

Derelict · Dec 1, 2015, 7:45 PM

You will find that getting a gigabit PoE managed switch will cost some cash. If you're going to use injectors:

Make sure they're gigabit-capable if you care about that
Use something like this as a starting point: http://www.amazon.com/D-Link-EasySmart-Gigabit-Ethernet-DGS-1100-08/dp/B008ABLU2I

Note the PoE version of the 8-port is almost triple the cost. Kind of depends if you already have injectors - they're not free.

bikemike · Dec 1, 2015, 7:48 PM

I was actually looking at this one:

http://www.amazon.com/NETGEAR-ProSAFE-GS108PE-Gigabit-GS108PE-300NAS/dp/B00M1C03U2/ref=sr_1_1?s=pc&ie=UTF8&qid=1448998966&sr=1-1&keywords=poe+managed+switch&refinements=p_n_feature_keywords_two_browse-bin%3A7306161011

Seems to have all the features I need…

Derelict · Dec 1, 2015, 7:53 PM

I personally despise low-end netgear switches but at least that one's web-managed and doesn't appear to require some shitty adobe air-based windows utility to configure it.

awebster · Dec 1, 2015, 8:01 PM

I have a GS110TP on my desk, it does everything I need for my desk lab. VLANs, PoE, LLDP, QoS, STP, and even has a hidden CLI mode.

johnpoz · Dec 1, 2015, 8:22 PM

Make sure your switch does the POE you want, not all POE is created equal.. Cisco AP should be standards.. But like the unfi stuff use to be their own breed of POE. The new stuff is suppose to be up to the standards..

But just keep that in mind when buying your switch and what devices you have. But yeah POE switches add some cost.. If only a couple of devices would prob just go with the injectors. If you need one from your cisco AP, I would make sure its a compatible model, etc.

You got 802.3at POE+ I believe and older 802.3af

bikemike · Dec 17, 2015, 6:47 PM

Really appreciate the input! Ended up getting an 8 port POE+ managed switch which will obviously do standard POE as well. Shortly after wiring the Cisco AP in to my house, my IPfire installation completely went bonkers and refused to obtain an IP from my internet provider modem. After tinkering with that for an hour or so, I decided to make an emergency switch to pfSense! So, I am back on pfSense with a proper access point and things are working great!

Have not carved up VLAN's yet, but plan to do that here soon.

pLu · Dec 20, 2015, 2:21 PM

The HP 1820-8G-PoE+ has 4 PoE ports for about twice the price of the non-PoE version.

alex84 · Feb 5, 2016, 10:09 AM

Using an Cisco SG200-8P with Unifi UAP-AC-Pro working Perfect =)