NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
pfSense VLAN with GS110EMX
Hello there. I am trying to get some pfSense VLANs set up. Two physical ports on my pfSense box are connected to GS110EMX Smart Switches. Is there any way to make a VLAN tag for the switch itself to allow for this? If necessary, I have attached my network topology (IPs are not the same as my network).
I was able to actually figure it out, but thank you all! Closing this thread!
5 Replies
Define the VLANs, like 200 and 300.
make one port an access port for VLAN 200, with PVID 200 (only, and nothing else)
make one other port an access port for VLAN 300, with PVID 300 (only, and nothing else)
Voila, there are your two VLANs on the switch, and you can do with it what you want, e.g. define a port as a trunk port tagged 200 and 300, to link to another switch, some server iron, ...
What is a "VLAN tag for the switch itself"? Being native German speaker I think I hear you want to have the switch admin on a tagged VLAN. Answer is: No, these Plus switches are not built on a managed core. The small 8051 uC implmented IP stack does not care about tags for management frames.
You are totally fine - my wording is entirely on me. I am just trying to figure out how to get VLANs on the pfSense box's physical ports - two of those ports have the Netgear switches connected to it. If I read correctly, I have to add a tag to the switch itself to be able to get it working with the pfSense-side VLAN
Somebody created a beautiful documentation of such a network, with "just" two predefined ports/subnets/security zones here in the German part of the community. Limitation is the way the Plus switches, not built and implemented on a managed switch core with a full VLAN management.
A long time ago, I had created some simple examples of a Plus switch, using the Adavnaced 802.1q VLAN config, Two active VLAN 10 and 20, some ports as simple access ports for each VLAN (port 1...6 for VLAN 10, port 7 & 8 for VLAN 20).
Cruciual is no other VLANs configured for the same ports, and correct PVID assigned according to the VLAN desired - where you want untagged frames entering the switch should end-up. Hope this gives some ideas, too.
Hi JohnWillard,
Once you have defined, and configured the VLANs (trunk, access ports, and PVID) from your router, you may want to consider configuring LAG between your router and the NETGEAR switch since you are planning to put two ports to link them. You may check the steps on how to configure LAG from this manual on pages 51-55.
Kind regards,
I was able to actually figure it out, but thank you all! Closing this thread!
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
