Well, my last email described the extent of my work with VLANs so I'm not sure how much more help I can be. :) The last suggestion I have is to try a different NIC in the pfSense box that is known to work with VLANs...the default answer around here seems to be that Intel NICs are best. My pfSense box happens to have two Intel NICs built-in so I don't have any personal experience with anything else. Maybe try searching the web to make sure those Realtek NICs support VLANs. In the setup you described below it shouldn't matter what's in the client machines because anything coming from port 11 should be tagged with the VLAN id by the switch before it goes to the pfSense box. Adam
> Date: Tue, 3 Jun 2008 22:53:44 -0500> From: [EMAIL PROTECTED]> To: > [email protected]> Subject: Re: [pfSense Support] VLAN Help> > I appreciate > everyones input on this. I'm so new to this not sure where > to start > troubleshooting the problem or if theres a misconfig.> The below suggestion > was definately very helpful but still didnt work so > Im at a loss with it.> > > PF firewall rule: Proto:any Source: Office net Port: any Dest: any > > Gateway:any ( for vlan)> Interfaces: LAN : rl1 (Tried it as vlan1 on rl1 > also)> Office: VLAN 3 on rl1> > Switch: Default Port Vlan: All set to 1 > except port11 pvid:3> Default Vlan1 Port 25 (pf box) untagged Port24 untagged > -working> Office VLAN ID3 Port25 tagged, Port 11 untagged - not working > > dhcp/static dont pass traffic> I'm about worn out as I'm not sure if its > something minor I'm missing, > the switch is bad, or both nics on the pf box > don't pass vlan traffic to > switch correctly (rtl8139 nic's)> If the nics on > the pf are bad any recommendations for replacement?> If I missed something in > the description let me know and Ill post back> > Adam Van Ornum wrote:> > I'm > not sure how much help this will be but I've got the same switch > > (Dell > 3024) and I'm using VLANs to provide a layer of insulation > > between my > wired network and wireless access point. I have my pfSense > > box plugged > into port 1 on the switch and the wireless access point > > plugged into port > 3.> > > > Under the VLANs option I have all ports "Untagged" on the default > VLAN > > (id 1). On my second "wireless VLAN" (using id 6), I have port 1 > > > "Tagged" and port 3 "Untagged", and all other ports are not included > > in > the VLAN (blank).> > > > Under "Default Port VLAN" I have all ports set to id > 1 except for port > > 3 which is set to id 6 (the id I'm using for the > wireless VLAN).> >> > So then in pfSense I have my LAN set to the actual > physical adapter > > and I added a VLAN interface using the same adapter and > VLAN id 6.> > > > > > I hope this helps...if you need more help understanding > what's > > happening with the VLAN settings in the switch I can try to help > more > > but its kind of hard to describe. ;)> > > > Adam> >> >> > > ------------------------------------------------------------------------> > > Date: Tue, 3 Jun 2008 15:16:04 -0500> > From: [EMAIL PROTECTED]> > To: > [email protected]> > Subject: Re: [pfSense Support] VLAN Help> >> > Not > sure if anyone had looked at the config file but since i have> > not heard > back I decided to start over. Did a clean install of> > pfsense. Not sure if > I have the dell powerconnect switch> > configured correctly but get different > stories. There is only 1> > switch and some say I need a trunk port some say > no.> > Heres the Layout for now that I want to get working> > [Pfsense]> > > _______|________________> > | |rl0 (wan2 later) |> > {WAN-xl0-Dhcp} {Network} > LAN> > ( vlan1 on rl1), Opt1(vlan2 on rl1)> > |> > |> > Dell> > PowerConnect > 3024> > |\> > > > Port25 (Links to pfsense box) Port24- test port1( vlan1 - > port25> > tagged, port24 untagged) / Port1 test port 2 (vlan2 port25 tagged,> > > port1 untagged)> >> > In the pfsense box set LAN to vlan1 on rl0, Switch > set port25> > tagged and port 24 untagged and unable to get traffic across.> > > Before I was able to set LAN to vlan1 and move traffic across> > port 24 > but then when added the 2nd vlan and setup vlan2 as tagged> > on port25 > untagged port1, Port1 would not get a dhcp address, Set> > manually still no > traffic. I'm almost at the point in thinking> > something is wrong with the > switch passing vlan traffic. I did> > update the firmware to the newest > version.> >> > Never have worked with vlan's before and I am trying to learn > this> > so I could implement it at work by the time our phone system gets> > > put in place which will be based on asterisk and therefore want to> > > separate the clients computers that are viruses infected from our> > network > that also has a server on it. Currently running on 2> > differenent routers > to separate the 2. Thank you in advance.> >> >> >> > On Wed, May 28, 2008 at > 2:28 PM, Mousemen <[EMAIL PROTECTED]> > <mailto:[EMAIL PROTECTED]>> wrote:> > >> > config-pfSense.local-20080528142627.xml> > > <http:///?ui=2&ik=72a65a1505&attid=0.1&disp=emb&view=att&th=11a3100cb4bc3c07>> > >> > Reset pw to the factory default> >> > I took out the WAN2 ip as that is > a static ip. The WAN is set> > to dhcp for now. Let me know if I need to do > anything anything> > else. The lan ip I'm not worried about as it is a test > network> > for now and will change once in production> >> > Wed, 28 May 2008 > 09:14:30 -0500 (Central Daylight Time),> > Curtis LaMasters <[EMAIL > PROTECTED]> > <mailto:[EMAIL PROTECTED]>>:> >> > Please send your config.xml > with passwords and IPs changed.> >> > -- > > Curtis LaMasters> > > http://www.curtis-lamasters.com> > <http://www.curtis-lamasters.com/>> > > http://www.builtnetworks.com <http://www.builtnetworks.com/> > >> >> >> > > ------------------------------------------------------------------------> > > Search that pays you back! Introducing Live Search cashback. Search > > Now! > > > > <http://search.live.com/cashback/?&pkw=form=MIJAAF/publ=HMTGL/crea=srchpaysyouback>> > > ---------------------------------------------------------------------> To > unsubscribe, e-mail: [EMAIL PROTECTED]> For additional commands, e-mail: > [EMAIL PROTECTED]> _________________________________________________________________ Enjoy 5 GB of free, password-protected online storage. http://www.windowslive.com/skydrive/overview.html?ocid=TXT_TAGLM_WL_Refresh_skydrive_062008
