"
I didnt set a PVID on port 2. Wont this lock the port to only accepting packets from a specific VLAN? Port 2 is going to the Opnsense LAN port which would be carrying mixed packets, i guess this is what you might call a trunk from what ive read (the ability to carry multiple VLANs over one cable?). Ive only set a PVID on port 8 since this is absolutely going to be going to a device that should be on VLAN 9.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
General Discussion / Re: Help me make my first VLAN with DHCP (it's not working)
September 24, 2024, 01:35:28 PM #2
General Discussion / Help me make my first VLAN with DHCP (it's not working)
September 24, 2024, 12:58:24 PM
Hello,
I decided to venture into trying this great piece of software and so far enjoying learning how it works. I only have basic network knowledge but I am doing research and learning however I can.
I have Opnsense setup on a mini PC with one eth port (called WAN) going to a modem using PPPOE and the other port (called LAN) going to the rest of my network. DHCP on and everything works fine as a basic replacement for my netgear broadband router.
Next I wanted to learn to make a VLAN to start putting my CCTV onto a a separate subnet.
My Opnsense router LAN port currently goes into a managed switch on port 8 and i setup a computer to be connected on port 2 to see if I can get DHCP to work and place this computer on a new VLAN/subnet.
A VLAN number 9 was made on the switch and set as tagged for port 8 and untagged for port 2. I believe this means that traffic going to and from the computer on port 2 will be tagged by the switch automatically (labelling it as VLAN 9) but port 8 will allow traffic to be tagged as-is and pass through. If I'm wrong please correct me I'm learning.
Next I setup a VLAN in Opnsense, gave it the parent interface of the LAN port which goes to the switch port 8 and assigned it as VLAN 9.
A new interface was created, enabled and set with a static IP of 192.168.9.1. I then enabled the dhcp server in Services for the new vlan interface allowing it to give out ips in the range of 192.168.9.2 to 192.168.9.254.
After saving and trying to get a DHCP address on the connected computer, it just kept trying and then gives up with an auto generated address. Even if i set a static IP of 192.168.9.2 on the computer, I can't ping it from Opnsense.
I read that the firewall needs to be altered. So i created a rule to allow traffic on the vlan 9 interface anywhere (just left the default options it selected). This didn't help.
It's 99% possible I'm doing something wrong. I would really appreciate some advice where I may have slipped up or not understanding. Thanks.
James.
I decided to venture into trying this great piece of software and so far enjoying learning how it works. I only have basic network knowledge but I am doing research and learning however I can.
I have Opnsense setup on a mini PC with one eth port (called WAN) going to a modem using PPPOE and the other port (called LAN) going to the rest of my network. DHCP on and everything works fine as a basic replacement for my netgear broadband router.
Next I wanted to learn to make a VLAN to start putting my CCTV onto a a separate subnet.
My Opnsense router LAN port currently goes into a managed switch on port 8 and i setup a computer to be connected on port 2 to see if I can get DHCP to work and place this computer on a new VLAN/subnet.
A VLAN number 9 was made on the switch and set as tagged for port 8 and untagged for port 2. I believe this means that traffic going to and from the computer on port 2 will be tagged by the switch automatically (labelling it as VLAN 9) but port 8 will allow traffic to be tagged as-is and pass through. If I'm wrong please correct me I'm learning.
Next I setup a VLAN in Opnsense, gave it the parent interface of the LAN port which goes to the switch port 8 and assigned it as VLAN 9.
A new interface was created, enabled and set with a static IP of 192.168.9.1. I then enabled the dhcp server in Services for the new vlan interface allowing it to give out ips in the range of 192.168.9.2 to 192.168.9.254.
After saving and trying to get a DHCP address on the connected computer, it just kept trying and then gives up with an auto generated address. Even if i set a static IP of 192.168.9.2 on the computer, I can't ping it from Opnsense.
I read that the firewall needs to be altered. So i created a rule to allow traffic on the vlan 9 interface anywhere (just left the default options it selected). This didn't help.
It's 99% possible I'm doing something wrong. I would really appreciate some advice where I may have slipped up or not understanding. Thanks.
James.
Pages1
