For a long time, I wanted to set up my network in a more proper way, but I couldn’t.
VLANs were too complicated for me. All I knew was that they could split a physical network into smaller subnetworks.
After I read Computer Networking: A Top-Down Approach, I thought I should try again.
I’m running an OpenWRT router that connects to my ISP via PPPoE (WAN). My LAN is a bridge that runs DHCP.
It’s very simple and suitable for a home network, but I wanted something more.
I searched for “OpenWRT VLAN” on Google but had no luck; every tutorial was hard to understand.
Then I searched for “OPNsense VLAN” and found this.
OPNsense docs are clearer and easier to understand. As always, Linux networking docs are a mess — FreeBSD is definitely better.
So I created VLANs, tagged them on a trunk port, and created an interface that runs DHCP.
Then I created a firewall zone and set the rules.
I don’t have any managed switch, so I connected my laptop (Windows 11) directly to the trunk port and tagged the VLAN on Windows 11.
Everything works.
I’ll look more into it when I have free time. That’s it for now.
Some diagrams / flows you may be interested in:
Ref:
Comments