Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
Routing PPPoE WAN alongside LAN
« previous
next »
Print
Pages: [
1
]
Author
Topic: Routing PPPoE WAN alongside LAN (Read 522 times)
awado
Newbie
Posts: 15
Karma: 0
Routing PPPoE WAN alongside LAN
«
on:
March 01, 2024, 09:23:09 pm »
Hello,
my hardware has only one ethernet port. Is it save to use the same ethernet cable for LAN and WAN, when WAN is via PPPoE with VLAN tag 7 and LAN is untagged? On the other side the VLAN gets separated by a managed switch, so LAN goes to the rest of the intranet and VLAN 7 goes to the modem. Could an attacker from the WAN side be sniffing packets from the LAN?
Thanks for any hints.
«
Last Edit: March 02, 2024, 11:32:42 am by awado
»
Logged
Maurice
Hero Member
Posts: 1213
Karma: 158
Re: Routing PPPoE WAN alongside LAN
«
Reply #1 on:
March 02, 2024, 12:38:04 pm »
Yes, it is possible to do this using VLANs. But you should tag the LAN, too. Mixing tagged and untagged frames on the same interface isn't recommended on OPNsense.
There should be no security impact as long as the switch is configured correctly.
Cheers
Maurice
Logged
OPNsense virtual machine images
OPNsense aarch64 firmware repository
Commercial support & engineering available. PM for details (en / de).
awado
Newbie
Posts: 15
Karma: 0
Re: Routing PPPoE WAN alongside LAN
«
Reply #2 on:
March 02, 2024, 08:57:36 pm »
Thanks Maurice. I did a first test with tcpdump in a simple demo setup and two switches. Seems to be okay. Will test it with real traffic. I wish, I could have done it all within the gateway router, a Fritzbox. One could connect its WAN directly to its LAN and connect that to a managed switch. But no info anywhere about the internal VLAN handling of a Fritzbox.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
Routing PPPoE WAN alongside LAN