VLAN interface not showing in live firewall view?

[cranky]

So i made a vlan 15, 2 pc's are on this vlan, 10.0.1.101 and 10.0.1.102
I expected that when theres traffic from and to this VLAN15, i would see it in the firewall under interface VLAN15.
All im seeing is WAN and LAN. Any help??

[lfirewall1243]

Have you enabled Logging for the Rules on your VLAN Interface?

[cranky]

yup, thats the weirdest thing.

[franco]

Is your LAN the untagged equivalent of VLAN15?


Cheers,
Franco

[cranky]

No, its tagged 15.

P.S. the DHCP Req is the only thing that shows up in the firewall under VLAN15 interface? So i'm confused af.

[lfirewall1243]

Are your sure the devices are in the VLAN and not the normal LAN?

Sounds like the devices are in the wrong network

[cranky]

Are your sure the devices are in the VLAN and not the normal LAN?

Sounds like the devices are in the wrong network

Well, the normal lan is 10.0.0.x and the vlan is 10.0.1.x, the pc's are getting the ip from the VLAN15 DHCP.
Also the shaper i setup to shape 10.0.0.x range, and the 10.0.1.x has unlimited bw, wich i see when i do speedtests.
I would think they are in VLAN15?

[lfirewall1243]

Are your sure the devices are in the VLAN and not the normal LAN?

Sounds like the devices are in the wrong network

Well, the normal lan is 10.0.0.x and the vlan is 10.0.1.x, the pc's are getting the ip from the VLAN DHCP.
I would think they are in VLAN15?

Yep than they are in the VLan

[cranky]

Are your sure the devices are in the VLAN and not the normal LAN?

Sounds like the devices are in the wrong network

Well, the normal lan is 10.0.0.x and the vlan is 10.0.1.x, the pc's are getting the ip from the VLAN DHCP.
I would think they are in VLAN15?

Yep than they are in the VLan

Yeah, thats what i figured too, i reinstalled this box 3 times already because of this (port forwarding is not working either to the vlan).
The first time i DID see the VLAN15 interface.

Also , im getting this error all of the sudden :
[26-Mar-2021 11:15:44 Europe/Amsterdam] PHP Warning:  implode(): Invalid arguments passed in /usr/local/www/firewall_nat_edit.php on line 216

[lfirewall1243]

Show your

-Interface config
-VLAN config
-Assigments
-Firewall Rules
-Network Plan (which devices are between your Client and OPNsense)

[franco]

I'm sorry for sounding dumb asking this again. Do the LAN and VLAN share the same physical port?


Cheers,
Franco

[cranky]

Show your

-Interface config
-VLAN config
-Assigments
-Firewall Rules
-Network Plan (which devices are between your Client and OPNsense)

Network plan= OPNsense (10.0.0.1 - em0) <--> Switch (vlan 15 tagged on ports 1,3,5) <---> client (port 3) 10.0.1.101

Rest is attached as screenshots.

[cranky]

I'm sorry for sounding dumb asking this again. Do the LAN and VLAN share the same physical port?


Cheers,
Franco

There are no dumb questions :) , yes they share the same port.

[franco]

As suspected from the firewall perspective VLAN traffic is seen on em0 natively and enforced so you don't see them attributed VLAN on top of em0.

Do not use tagged and untagged on the same port going into OPNsense.


Cheers,
Franco

[cranky]

As suspected from the firewall perspective VLAN traffic is seem on em0 natively and enforced so you don't see them attributed VLAN.

Do not use tagged and untagged on the same port going into OPNsense.


Cheers,
Franco

ok, so, this is what i just did, and now its showing up as vlan15....

My switch uses native vlan1 untagged, i added the untagged vlan1 to ports 3 and 5, (so port 3 is now untagged1, and tagged15), now it shows up as vlan15