1
General Discussion / OPNSense Inter-VLAN Routing - Can't get VLANs to Communicate?
« on: October 18, 2021, 05:38:51 pm »
So basically I am trying to set up router-on-a stick between a few vlans to segment my network. I have 5 vlans, each is tagged and working through OPNSense. However, I cannot get the interfaces to communicate with eachother.
Basically I have 5 vlans:
VLAN 1 - Default, use for management basically
VLAN 2 - Servers VLAN, going to eventually have all my servers on it
VLAN 3 - Devices VLAN, basically all the normal computer systems on my network
VLAN 4 - IOT Vlan, for any other devices
VLAN 5 - WAP Vlan - going to be all my Wireless access points
VLAN 10 - WAN (Of course want to be separated through firewall)
I can probably do the routing with my switch (Procurve 6600-48g) but I would like to be able to set up firewall rules to block specific traffic between some of the VLANs. (Will eventually do that later)
Basically for right now I want them to all be able to communicate with each other, but no matter what I do I can't ping devices on different VLANs, but the VLANs have access to the internet. Do I need to set up rules to allow communication? I've tried a few different things, like passing out and in from the different interfaces but no matter what configuration I tried I can't get it to work.
Basically I have 5 vlans:
VLAN 1 - Default, use for management basically
VLAN 2 - Servers VLAN, going to eventually have all my servers on it
VLAN 3 - Devices VLAN, basically all the normal computer systems on my network
VLAN 4 - IOT Vlan, for any other devices
VLAN 5 - WAP Vlan - going to be all my Wireless access points
VLAN 10 - WAN (Of course want to be separated through firewall)
I can probably do the routing with my switch (Procurve 6600-48g) but I would like to be able to set up firewall rules to block specific traffic between some of the VLANs. (Will eventually do that later)
Basically for right now I want them to all be able to communicate with each other, but no matter what I do I can't ping devices on different VLANs, but the VLANs have access to the internet. Do I need to set up rules to allow communication? I've tried a few different things, like passing out and in from the different interfaces but no matter what configuration I tried I can't get it to work.