My beloved vlan 4095

[virusbcn]

Hi guys, I have just installed Truenas 10.0-U6.1, I want to create a VM to install Pfsense and to be able to route my network, my fiber provider uses VLAN6 and PPOE to connect, this with ESXi is no problem I tell the switch to use the VLAN4095 and so let pass all VLANs and in the VM the same Pfsense I tell him to use the Vlan6 and connects me without problems at first.
The problem is that in Freenas not let me use the 4095 to let everything pass, I have tried to assign the VLAN in the Pfsense leaving the default configuration in truenas and assigning the VLAN in the Truenas, presenting that VLAN card to the VM and that manages the PPOE the pfsense and no, I can not connect in any way

How could I get my PfSense VM to work ????

thanks

 

[sretalla]

I have tried to assign the VLAN in the Pfsense leaving the default configuration in truenas and assigning the VLAN in the Truenas, presenting that VLAN card to the VM and that manages the PPOE the pfsense and no, I can not connect in any way

How could I get my PfSense VM to work ????

Generally speaking, it's not great to use a Type 2 Hypervisor for hosting a Firewall... but it's your choice/funeral.

Please be specific about what you have done to set the VLAN... Are you also including a bridge in that setup?

NIC(s) -> LAGG (if you have it) -> VLAN -> Bridge (IPs or attachment to VM happens here)

 

[virusbcn]

Generally speaking, it's not great to use a Type 2 Hypervisor for hosting a Firewall... but it's your choice/funeral.

Please be specific about what you have done to set the VLAN... Are you also including a bridge in that setup?

NIC(s) -> LAGG (if you have it) -> VLAN -> Bridge (IPs or attachment to VM happens here)

This is my network summary now, i test to connect my pfsense vm wan nic to NIC em0 directly, VLAN6, and bridge1 with and without vlan6 in pfsense config and i can not connect anyway

Bridge config

Vlan Config

 

[sretalla]

In those screenshots, em0 and vlan6 are both showing as down... are they connected to something that's up?

 

[virusbcn]

In those screenshots, em0 and vlan6 are both showing as down... are they connected to something that's up?

yes, now the cable is disconnected so I can have internet and send this post ;-)

 

[virusbcn]

another solution would be to be able to do like esx and leave that network card only for the VM, srv-io if I remember correctly is called....

 

[virusbcn]

and this is my config pfsense working virtualized with switch esx with vlan 4095

 

[sretalla]

another solution would be to be able to do like esx and leave that network card only for the VM, srv-io if I remember correctly is called....

If you can identify it as a PCI device with pciconf -lv you may be able to get the hypervisor to grab it and push it into the VM (and hence not configure it in the host at all).

That's where I anticipate trouble since it's a type 2 hypervisor, but it may work.

Check under Devices for that VM.

 

[ChrisRJ]

Generally speaking, it's not great to use a Type 2 Hypervisor for hosting a Firewall... but it's your choice/funeral.

Can you elaborate a bit on your concerns? Thanks!

 

[Heracles]

Type 2 hypervisors are meant to virtualize Operating Systems.
To run a firewall, you need to virtualize its network environment (switch, vlans, etc.). That is the purpose of a type 1 hypervisor, not type 2.

 

[ChrisRJ]

@Heracles and @sretalla , I had slightly misread and thought you were arguing against pfSense on ESXi. But you didn't