New setup - tagged vlan for default LAN interface

[yanndecay]

Hey guys,

i am struggeling with putting my default LAN interface in tagged vlan.

Right now it's a playground and I have no router/network at all. My computer is connected to my cisco switch and the switch is connected to Port1 of my OPNsense. Both are in the same vlan (on the switch), but right now there is no vlan of course.

After OPNsense installation I choose option 1 in the (vga) menu to assign interfaces. here I say "y" for the creation of the vlan and create the vlan of my choice. Later when it asks me for the LAN interface i point to that new vlan interface. And like that I have no connection to the GUI. If I point it to the parent interface, the connection works but then the vlan10 is unused in the OPNsense but that's not what I want.

Why is it not working like that? What do I need to do to be able to connect to the GUI on vlan10 only in my scenario?

[Patrick M. Hausen]

You need to configure the switch port connected to OPNsense as a trunk port with allowed VLAN 10 (or all, depending on your policy).

[yanndecay]

sounded like the solution. but unfortunetly it doesn't work.

Right now i have (for sense connection) on port 4 a working setup with Computer->vlan10<->SWITCH<->vlan10->OPNsense but connected to LAN without vlan.

And on Port 1 (my new test) I have from the switch a trunk to the sense (allowed all vlans for now).
Now in the opnsense I have an interface called VLAN10 which is igc0_vlan10 (igc0=port1) and my preferred IP which is in the same subnet like port 4.

I also activated the Parent interface igc0 but gave no IP (interestingly it still shows one in the console view (192.168.1.1./24).

Usually it should work like this, right?

[Strator]

The OPNsense parent interface is your untagged VLAN on the switch, i.e. the native VLAN of the trunk. Child interfaces will be your tagged VLANs.