Posted: Wed Jan 22, 2020 12:14 Post subject: VLANs with Pfsense and DD-wrt
I am going to set up two VLANs in my home network.
I have a Pfsense machine as a firewall, and I connected a DD-wrt router (a tp-link tl- Wr841N) to it, which in turn supports VLANs.
The first step would be to set up and name the two VLANs in my Pfsense, which seems to be kind of a straightforward process.
Unfortunately, I am still struggling to make sense of how VLANs work in a DD-wrt device.
I hope that someone can help me figure it out and to set up VLANS for my little home network.
This is my project:
1)In one of dd-wrt router ports it will be connected another switch/AP (not a dd-wrt device) to enable my smart tv and my guests to get access to internet from my dining room.
2) on other 2 ports will be wire connected two PCs of mine, which are placed in my room
3) on my DD-wrt, I want to set the Wireless Physical Interface as my private wireless network, and a virtual network for guests, just in case.
So, I'ld like to put the main Wireless Physical Interface and my PCs (point 2 above) in a, say, VLAN5 and the rest (point 1 above + the virtual network) in VLAN10.
Could you please help me?
Thanks
Joined: 18 Jun 2019 Posts: 18 Location: Maryland - US
Posted: Fri Jan 24, 2020 21:57 Post subject: Re: VLANs with Pfsense and DD-wrt
tipjohn wrote:
I am going to set up two VLANs in my home network.
I have a Pfsense machine as a firewall, and I connected a DD-wrt router (a tp-link tl- Wr841N) to it, which in turn supports VLANs.
The first step would be to set up and name the two VLANs in my Pfsense, which seems to be kind of a straightforward process.
Unfortunately, I am still struggling to make sense of how VLANs work in a DD-wrt device.
I hope that someone can help me figure it out and to set up VLANS for my little home network.
This is my project:
1)In one of dd-wrt router ports it will be connected another switch/AP (not a dd-wrt device) to enable my smart tv and my guests to get access to internet from my dining room.
2) on other 2 ports will be wire connected two PCs of mine, which are placed in my room
3) on my DD-wrt, I want to set the Wireless Physical Interface as my private wireless network, and a virtual network for guests, just in case.
So, I'ld like to put the main Wireless Physical Interface and my PCs (point 2 above) in a, say, VLAN5 and the rest (point 1 above + the virtual network) in VLAN10.
Could you please help me?
Thanks
I just accomplished this very thing using an OpnSense FW appliance and DD-WRT. It was quite the ordeal but I've finally got it working and I know more about DD-WRT VLANs than I ever thought I wanted to.
What have you done so far?
Can you post screenshots [800x600 pixels]?
Run this command from the CLI and post the output...
Code:
nvram show | grep 'port.*vlans\|vlan.*.port\|vlan.*hwname' | sort
For your setup you're going to want more than one VLAN over a physical link to your pfSense firewall, and you won't need the DHCP or IPTables portions of this guy's config since pfSense can/should be handling that for you.
For your setup you're going to want more than one VLAN over a physical link to your pfSense firewall, and you won't need the DHCP or IPTables portions of this guy's config since pfSense can/should be handling that for you.
and see if you understand what I did to configure the NVRAM? If you don't and you can't make it work, I'll write up a walkthrough.
That would be very much appreciated. Thanks
So sorry for the delay. I've been away and haven't checked the forum in a couple weeks.
Have you made any progress since your last post? Just trying to see where I need to start with instructions. I'll make sure to check this site regularly for your response. _________________ ----------------------------------------
| "we see things not as they are, but |
| as we are." -Talmud | ----------------------------------------
Joined: 18 Jun 2019 Posts: 18 Location: Maryland - US
Posted: Sun Feb 16, 2020 20:17 Post subject:
Per Yngve Berg wrote:
VLAN in dd-wrt is chip-set dependant. You should post in the chip-set specific forum i.e. Atheros, Broadcom etc and not here in the General Forum.
Will do, if the OP ever responds. Don't suppose you know the chipset he's working with? With Wikidevi being down, I'm not sure where to easily find that info. _________________ ----------------------------------------
| "we see things not as they are, but |
| as we are." -Talmud | ----------------------------------------
How's it coming along?