Opnsense In Unifi Network

[delta161]

Hey Guy's

Currently I have a full unifi network:

                             (==MODEM==)
                                        ⬇︎
                      (===UNIFI USG PRO===)
                                         ⬇︎
                 (===UNIFI 24P PoE Switch===)
                                         ⬇︎
                  (===UNIFI 8P PoE Switch===)

Over this network there are 10 vlan's running and a CloudControl Key attache to the 24P switch.

My opnsense machine is install on esxi witch has 2 physical NIC's.
I would like to put the OPNsense firewall between the 24P Switch and USG PRO, and use the physical interfaces as IN and out interfaces while keeping the TRUNK set by USG tor transport all the VLAN's.

My question is how to configure the interfaces to allow this?
Feel free to suggest an alternative placement of the opnsense box.

[bartjsmit]

Set each vSwitch to trunk mode to allow VLAN tagging at the guest. Otherwise you'll end up with a VM with 20 vNIC's

https://kb.vmware.com/s/article/1004252 has more

Bart...

[delta161]

Bart,
Thanx the article is really helpful for the configuration on esxi level, but how would it look on opnsense level ?
Would it just require 2 interface with a bridge ?

[bartjsmit]

Yes, if that is how you want to use it: https://wiki.opnsense.org/manual/how-tos/transparent_bridge.html

What are you looking to do on OPNsense? E.g. bridge mode excludes shaping.

Bart...