Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
21.1 Legacy Series
»
VLAN in WAN and LAN
« previous
next »
Print
Pages: [
1
]
Author
Topic: VLAN in WAN and LAN (Read 4250 times)
verasense
Newbie
Posts: 41
Karma: 1
VLAN in WAN and LAN
«
on:
March 23, 2021, 11:41:22 pm »
My ISP requests a VLAN of 20, does this mean I should not use VLAN 20 in my LAN? Or will OPNsense treat differently VLANs on WAN interface vs VLANs on LAN interfaces?
«
Last Edit: March 24, 2021, 01:57:19 am by verasense
»
Logged
bartjsmit
Hero Member
Posts: 2018
Karma: 194
Re: VLAN in WAN and LAN
«
Reply #1 on:
March 24, 2021, 10:11:00 am »
Short answer is no. You have thousands to choose from, so why make things more difficult?
Bart...
Logged
Maurice
Hero Member
Posts: 1213
Karma: 158
Re: VLAN in WAN and LAN
«
Reply #2 on:
March 24, 2021, 11:28:25 am »
If your OPNsense WAN and LAN interfaces are two separate physical interfaces, you can absolutely use the same VLAN on both of them. VLAN uniqueness is only required within a layer 2 network.
Logged
OPNsense virtual machine images
OPNsense aarch64 firmware repository
Commercial support & engineering available. PM for details (en / de).
verasense
Newbie
Posts: 41
Karma: 1
Re: VLAN in WAN and LAN
«
Reply #3 on:
March 24, 2021, 11:37:39 am »
Yes, there are separated physical interfaces, my concern is that, in the same way that if I set the same VLAN in two different physical LAN interfaces they will be "connected", this will happen somehow with the WAN interface. Not sure if the behaviour would be to share a broadcast domain between my LAN VLAN20 and the WAN.
I know that there are a lot of VLAN IDs to choose from, but I had already set my network with certain VLANs before. It is just that my ISP has required me a specific VLAN to connect to its fiber afterwards, and it just happened to be one that I had already assigned and configured.
Logged
Maurice
Hero Member
Posts: 1213
Karma: 158
Re: VLAN in WAN and LAN
«
Reply #4 on:
March 24, 2021, 11:50:47 am »
As long as both interfaces are not connected to the same physical network (switch), the VLANs should not be in the same broadcast domain.
Quote from: verasense on March 24, 2021, 11:37:39 am
if I set the same VLAN in two different physical LAN interfaces they will be "connected"
Did you actually observe that? While you can create bridges between physical interfaces in OPNsense, I would be very surprised if it would do so automatically simply based on identical VLAN IDs.
Logged
OPNsense virtual machine images
OPNsense aarch64 firmware repository
Commercial support & engineering available. PM for details (en / de).
verasense
Newbie
Posts: 41
Karma: 1
Re: VLAN in WAN and LAN
«
Reply #5 on:
March 25, 2021, 07:54:26 pm »
Mmmm.. Actually I didn't observe that, it is an assumption. I thought that connecting to the VLAN 10 on interface 1 and to the VLAN 10 on interface 2 was going to exchange packets between them.
You are right about that - I actually remember I had to create a bridge in the past to connect two networks from different interfaces. Just thought that having the same VLAN will trigger the same behaviour as a switch, which is not true.
«
Last Edit: March 25, 2021, 08:08:26 pm by verasense
»
Logged
Maurice
Hero Member
Posts: 1213
Karma: 158
Re: VLAN in WAN and LAN
«
Reply #6 on:
March 25, 2021, 08:17:50 pm »
Oh, assumptions are dangerous... speaking from experience.
It's not a switch. I see no reason why it would automatically bridge VLANs across different physical interfaces just because they have the same VLAN ID.
Why not go ahead and just try it?
[edit]
Your edit was faster than my response. :-)
[/edit]
«
Last Edit: March 25, 2021, 08:19:49 pm by Maurice
»
Logged
OPNsense virtual machine images
OPNsense aarch64 firmware repository
Commercial support & engineering available. PM for details (en / de).
verasense
Newbie
Posts: 41
Karma: 1
Re: VLAN in WAN and LAN
«
Reply #7 on:
March 26, 2021, 12:23:20 am »
Thanks :-D
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
21.1 Legacy Series
»
VLAN in WAN and LAN