thanks for your quick reply, i am not an networking engineer, and in this field ,i m totally a newbie. by read some article and books. i understand usually people use vlan to stop the unnecessary broadcasting. but for me, it's simple , just to have the vlan. actually i bought a cheap switch for this purpose.
back to the topic, the pfsense has the ability to control multiple vlans at the same time, that means the pfsense can allow multiple devices from different vlans go through. <-----------this is what i want. so I created two vlans on switch, vlan 1 and vlan 2, also i configured two vlans on pfsense. now there are two new virtual network interfaces ( em1_vlan1 em1_vlan2,) all I want to have is my laptop1 can connect to vlan1 and go though the pfsense by em1_vlan1 interface. i don't understand why i need vlan0 for wifi. my pc where the pfsense is hosted on is using wifi to connect to the internet. and my laptops are using wire. and every vlan should have it's own range, that's very helpful , thanks again. Best Regards, BYCN82 On Mon, Apr 2, 2012 at 3:35 PM, Pim van Stam <[email protected]> wrote: > > On 2 apr. 2012, at 06:42, Bill Yuan wrote: > > > Hi All, > > > > I have tried for the whole weekend to make the my pfsense work with > vlans in vmware, but still failed. > > > > here is the network structure. > > > > > > > > > > I am using a vmware workstation 8 on PC. and the LAN NIC is "Realtek > 8169", > > > > > > currently , on switch Port 1 2 8 are in vlan1 > > Port 3 4 8 are in vlan2, > > > > Laptop 1 is using port 1 > > Laptop 2 is using port 3 > > PC is using port 8 of the switch. > > > > and I created two vlans in pfsense, that means in pfsense ,so there are > em1_vlan1 and em1_vlan2 , > > > > so I want to know is it possible that the traffic from laptop1 will use > em1_vlan1 and laptop2 will use em1_vlan2, > > > > currently i am still don't know why my vlan setting doesn't work. > > > > I am really need help on this , ths in advance. > > > I'm afraid you missed the concepts of vlan's. A vlan is a separated > network (LAN). To separate the networks vlan tags are used in stead of > different switches. > * a vlan has it's own IP range > * traffic between vlan's must be routed by a router. > > Why do you want to use vlan's? For learning purposes? > > If so: > vlan 0: > * create vlan0 > * connect wifi access point to vlan 0 switch port > * AP at 192.168.0.2 > * em1_vlan0 on pfsense at 192.168.0.1 > > vlan 1: > * laptop 1 at 192.168.1.4; > * define em1_vlan1 in pfsense with ip 192.168.1.1 > > vlan 2: > * laptop 2 at 192.168.2.5 > * define em1_vlan2 in pfsense with ip 192.168.2.1 > > The pc must be in clan 1 or vlan2, both is not sensible > Wifi is in separate vlan (vlan0) > > in pfsense: > * define vlan's > * configure the vlan interfaces (OPTx) > * define firewall rules, otherwise there will be no traffic at all > * define outbound NAT rules if all vlan's must be capable of access the WAN > * define the DHCP server settings for all van's > > Does this help? > > Regards, Pim > > > > > > > Best Regards, > > BYCN82 > > > > > > > > > > > > > > _______________________________________________ > > List mailing list > > [email protected] > > http://lists.pfsense.org/mailman/listinfo/list > > _______________________________________________ > List mailing list > [email protected] > http://lists.pfsense.org/mailman/listinfo/list >
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
