I'm sure I'm missing something obvious, I'll try to lay out my setup best I can. Main LAN is setup as 10.1.1.1/8 and VLAN2 is setup as 192.168.2.1/24 if I connect to VLAN1 (untagged) I get 10.* IP just fine, if I connect to VLAN2 (wifi or wired) I can not get a 192.* address. I can however set a static IP and everything works perfect.
PFSense is setup with VLAN2 connected to a virtual interface (OPT1) which is physically connected to the LAN port. OPT1 is setup with its own DHCP server in the 192.168.2.0 subnet. Gateway and OPT1 IP is 192.168.2.1 and I set an allow OPT1 to any firewall rule and block OPT1 to LAN rule.
My switch which is a Cisco SG500 is configured with VLAN1 untagged and VLAN2 tagged on both the ports to PFSense and my AP-AC Lite
This is where I get really unsure about my setup. In the Networks page of my Unifi Controller I setup 'LAN' with Purpose "Corporate", Interface says USG Required so I left that alone Gateway is 10.1.1.1\8 and DHCP mode is set to None. LAN2 I set Purpose as "Guest", left Interface alone again, gateway is 192.168.2.1/24 then VLAN 2 and DHCP mode is also none.
Under Wireless Networks I've got my main wifi setup without a VLAN tag and my guest network has VLAN checked and 2 entered.
Please let me know if there is any more info needed to help diagnose and thanks in advance for any assistance I'm literally pulling my hair out trying to diagnose this. Both youtube videos I've found say to do exactly what I've done but they don't get into switch config much.
No comments:
Post a Comment