On Fri, Jul 24, 2009 at 1:55 PM, Joseph L. Casale<[email protected]> wrote: >>Here's what I do using the same setup as you have: >> >>I assign the WAN(em0) and the LAN(em1), to configure the conectivity >>to the internet, I connect to the web interface, create some basic >>rules(so I can access my adsl modem), then I go to the assign option, >>then to the VLAN tab and I add it assigning it to the em1 interface, I >>reboot the box, connect to the webinterface again then I go to the >>assign option and add a new interface using the VLAN I just created, >>then I go to the newly interface, I rename it(DMZ) and add the IP >>address and the subnet, remember to save changes in every step you >>make of the setup, create the pertinent rules(very important) then to >>test it I just go to the DHCP service and I use a short range so I can >>connect to the newly subnet using my laptop. >> >>hope it helps. > > Thanks everyone! Sorry for the bad description, I'm not thinking all that > clear atm:) > > So I do only have two interfaces, and the switch is vlan capable and has > multiple vlans setup. The production lan is untagged on (1) on all ports > (not my setup) and there is a second vlan that I am interested in (3) that > is tagged on the LAN interface of the pfSense box. So I need to access hosts > and forward traffic to hosts on vlan3 through LAN interface from both my lan > and wan interface. > > So I assigned a vlan (3) on parent interface (lan) and rebooted. > I then created a new interface opt1 on the vlan interface above and gave it > an ip on vlan 3's subnet. > I then added rules for testing allowing all traffic from opt1->* as lan has > the lan->* rule already. > > Every step was saved but I must still be missing something. The switch most > certainly is allowing tagged traffic into vlan3 on the port the lan interface > is on. > > What have I missed, I still can't see hosts on vlan3 from the lan. > > jlc >
need to assign rules in the lan in order to see the VLAN subnet. -- Usuario Linux Registrado #452368 Usuario Ubuntu Registrado #28025 "Doing a thing well is often a waste of time." ---------------------------------------------------------------------------------------------------------------------------------- //Netbook - HP Mini 1035NR 2GB 60GB - Windows XP/Ubuntu 9.04 //Desktop - Core 2 Duo 1.86Ghz 8GB 500GB - Windows 7(testing) //Desktop - Core 2 Duo 2.40Ghz 8GB 320GB - MacOS Leopard //Desktop - Athlon 64 2.7Ghz 8GB 400GB - Ubuntu Jaunty //Server - Pentium D 3.2Ghz 8GB 1TB - Debian Lenny //Server - Celeron 1.8Ghz 1GB 160GB - Pfsense //Server - NSLU2 266Mhz 32MB 1TB - Debian Lenny --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
