Hello Giles, I am grateful for your concern regarding my ip-design. We are however content with it and we don't have any plans to change it. I need VLAN either configured in the switch or in the machine and I prefer to configure it in the machines. All interfaces are VLAN separated in the same switch infrastructure, this is quite common for new fabric switches which are extendable (hence the VLAN1, VLAN2 and VLAN10) The ILO interface is just named ILO, it has nothing to do with integrated lights out from HP other than that we have some servers connected on VLAN1 (default VLAN) which can remotely managed through their ILO.
If I read you correctly it seems like the VLANs are creating a problem with the routing in pfSense? If this is the case I guess I can configure the switches instead but I am confused why this should be a problem. Can anyone shed some light on this topic? Kindest regards, Niklas From: Giles Coochey <[email protected]<mailto:[email protected]>> Reply-To: pfSense Support and Discussion Mailing List <[email protected]<mailto:[email protected]>> Date: Monday 8 September 2014 15:10 To: pfSense Support and Discussion Mailing List <[email protected]<mailto:[email protected]>> Subject: Re: [pfSense] Routing between LAN interfaces On 08/09/2014 14:02, Niklas Fondberg wrote: I have 4 physical interfaces. My setup looks like this: Interface | Network port ------------------------|--------------- WAN (static ip/30)| em0 LAN (192.168.1.1/24)| em1 (default VLAN, not used) DMZ (10.0.0.0/24)| VLAN2 on em2 ILO (10.2.0.0/24)| em3 OFFICE (192.168.2.0/24)| VLAN10 on em1 Do you understand now? What is your rationale you using VLANs? It appears that you are only using a single VLAN for any interface and wouldn't need to have VLANs at all. It seems like unnecessary complications to your set up for me. When you mention ILO interface? Is that an interface for a subnet that uses ILO type management cards, or are you trying to use an ILO port on the firewall as a routed interface (which wouldn't work as the ILO is a seperate system on the server). Thanks Giles -- Regards, Giles Coochey, CCNP, CCNA, CCNAS NetSecSpec Ltd +44 (0) 8444 780677 +44 (0) 7584 634135 http://www.coochey.nethttp://[email protected]<mailto:[email protected]>
_______________________________________________ List mailing list [email protected] https://lists.pfsense.org/mailman/listinfo/list
