Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
Vlan tagging and port conifguration question
« previous
next »
Print
Pages: [
1
]
Author
Topic: Vlan tagging and port conifguration question (Read 4597 times)
vpn
Newbie
Posts: 18
Karma: 1
Vlan tagging and port conifguration question
«
on:
October 26, 2020, 08:32:29 pm »
So building a new setup for my home use and went "all out" segregating about 10 vlans and such, including WiFi, Printers, etc...
For the most part I think I have it figured out but cant get dhcp working from any of the ports I tested so far.
Basically, I have most "interface" ports setup with no IP, no DHCP, and a vlan sub interface for each corresponding to that network. That vlan interface has a dhcp server for that segment and gateway of .1. I have my Cisco switch setup with the vlan for this segment (50 in this case) and tried both tagged and untagged. I think tagged is correct. For testing, I have plugged in a laptop to this one port and figured it would pull an IP on this segment but maybe I need the other interfaces setup too? Should this work or am I missing something here so far? I also tried having the laptop connected to the switch and both devices in the same vlan and connected to the corresponding port on this device but same results.
I have this sitting on my desk with only the LAN interface for testing and setting up.
Any advice?
Logged
marjohn56
Hero Member
Posts: 1701
Karma: 179
Re: Vlan tagging and port conifguration question
«
Reply #1 on:
October 27, 2020, 07:28:41 am »
Tagged on the trunks, untagged on the VLAN ports, at least that's how my switches work. My Opnsense router has 3 VLANs, these are all on one port, i.e. igb1_vlan101, igb1_vlan102, igb1_vlan103. this connects to one of the tagged "trunk" port of the adjacent switch; another tagged "trunk" port then connects then to the trunk "tagged" port of the switch in my study, The VLANs themselves are then exposed on the various untagged ports assigned to the given vlans. Do it that way then set up a static address on your PC, you should be able to ping the gateway of the given VLAN on the router.
Added some images...
Study switch
Hall Switch - Mostly trunks carrying everything on all ports except one which has the primary VLAN only, used to link back to the modem for monitoring purposes,
And one of the other switches, this one in the office that breaks out the VLANs from another trunk going in on port 8.
«
Last Edit: October 27, 2020, 07:42:55 am by marjohn56
»
Logged
OPNsense 24.7
-
Qotom Q355G4
- ISP -
Squirrel 1Gbps
.
Team Rebellion Member
- If we've helped you remember to applaud
vpn
Newbie
Posts: 18
Karma: 1
Re: Vlan tagging and port conifguration question
«
Reply #2 on:
October 28, 2020, 03:34:49 am »
marjohn56, Thanks!!!
So I have made some progress! I have 2 vlans tested and working! I am testing and working on the rest now.
I think one of the issues that was tripping me up was that on my Cisco switch even though I had the port setup as a trunk port, it looks like it was allowing me to choose tagged or untagged. I thought if it was trunk, its tagged automatically. If access its untagged.
Anyways I think I have it cleared up now, and as you said the trunks with multiple vlans are now tagged. I did have 2 of these interfaces with only a single vlan but originally configured them on the router with a vlan interface!. Now I think its best to have them as an access vlan since its hosting a single vlan. So far this is working good.
I wil continue to validate and configure the others and report back soon.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
Vlan tagging and port conifguration question