Hey guys. I am still teaching myself how subneting and VLAN configuration works. And I know you see these questions over and over again, I just want to make sure my plan is sound before I start digging into the Cisco CLI and doing my very first config on my layer 3 3560 switch. Please excuse my ignorance.
I just built a pfSense box. I have its private IP statically set to 192.168.100.254 My plan is to send traffic out of its LAN port towards my Cisco Switch (which will have a number of VLANS on it).
On the Cisco switch....
VLAN 20 = Wired Ethernet devices. Subnet 192.168.20.0/24
VLAN 30 = Security cameras. Subnet 192.168.30.0/24
VLAN 40 = WiFi access point. Subnet 192.168.40.0/24
So now I am a bit confused about how I set up my LAN port on the pfSense box. I understand that this will be a trunk port, sending/receiving data from all VLANS on my switch.
I was thinking of tagging the pfSense LAN port with VLAN 10. Then on the layer 3 switch, I would set up a single switchport on VLAN 10. This would become my trunking port which, in the CLI, I can configure to pass traffic to VLAN 20, 30 and 40.
Does all this sound correct? Do my subnets all seem okay on paper?
One of the things I am confused about: Do I also have to set up the router LAN port with all those VLAN tags as well? Or can I just use VLAN 10 on the router, and let the switch do the multiple tagging?
Thanks so much! I hope this makes sense. Again, sorry about my bad terminology.
EDIT: Thanks so much to everyone who replied. The expertise in this sub is leaps and bounds better than the homenetworking sub for stuff like this. I am learning so much from you guys. Thanks again.
No comments:
Post a Comment