I am trying to configure a VLAN which will be home to my various devices (plugs,lights,etc...) I have setup a VLAN interface (and DHCP) on opnsense and a seperate wireless network on unifi access point.
My current LAN uses 10.0.0.0/20 and new vlan uses 192.168.1.0/24 presently I have just added a pass all rule to try and get it working. So far it kind of works....
Connecting to new SSID gives me an ip in correct range (192.168.1.100) from this I can access internet OK and ping anything on existing 10.0.0.0/20 network (which will be blocked later on) but from any device on normal lan I cannot ping 192.168.1.100.
I can ping the opnsense interface ip OK (192.168.1.1) but not the device. I can happily ping this from router so ICMP is not disabled on device.
Firewall rules are simple default allow rule on lan and a blanket allow for the new vlan.
What am I missing to allow communication from Lan to Vlan?