Title: How to segregate certain devices to a VLAN
Post by: osnautilus on November 04, 2018, 11:18:12 pm
Hi all,

I'm new to the forums, but not new to OPNsense. I'm not a network administrator or networking whiz by any means, but technical enough to have been able to build a home gateway and roll out OPNsense over a year ago. The user-friendly UI is awesome and definitely makes the learning experience more pleasant.

I have, over time, added more IoT devices to my network (over WiFi, through an AP) and was toying with the idea of creating a VLAN and assigning them to their own network so that in the event of a breach, they won't have access to systems on my main internal network.

I started venturing into configuring a VLAN on OPNsense, but beyond creating the VLAN itself and the associated interface, I can't figure out to progress further. Is what I'm trying to do even possible?

Essentially, I envision my gateway unit to assign a device to a different VLAN based on their specified MAC address (when DHCP is giving out the address).

Any help, instructions, or guidance would be much appreciated. I've pulled my own weight for over a year and now am in need of an expert's opinion.