Pfsense + Vlan Routing to Internet
Hello, Thanks to all who helped with the VLAN Config with the Netgear Switch. I really appreciate that.
Would anyone know the correct routing config to route the vlans out to the internet?
The subnets are:
"Recognize, Realize, and Repent"
Your terminology is a little confused, since vlans are a layer 2 construct, and routing happens at layer 3.
I'm going to assume that I know what you want though, so correct me if I'm wrong. Your two vlans are both local (LAN and OPT1), and you want hosts on both of these vlans to have access to the internet via NAT.
The simplest way to accomplish this is to leave Automatic Outbound NAT enabled and leave the default LAN pass rule in place. Your LAN should already have access to the internet.
Now click the "+" beside your LAN pass rule to create a new rule based on the existing rule. Change the interface to OPT1 and the source type to "OPT1 subnet". Save and Apply. Now your second LAN also has access to the internet.
Note that these open Pass rules also permit your local subnets to talk to each other. If you don`t want this, I recommend creating an alias that includes all RFC1918 subnets, then in your pass rules, designate the destination as "!LOCAL", where LOCAL is the alias you created.