Firewall – How to configure pfsense to use LAN ports as local switched ports

firewalllocal-area-networkpfsense

I have a pfsense box with 6 LAN ports. I'd like to use one as the WAN port, and 5 as local LAN ports, just like a home gateway/router. How to setup the LAN ports so that they are all in the same subnet? It seems that the bridging function only wants to bridge between WAN and LAN?

Best Answer

Three major steps are required for this:

1) Assign and enable all the additional interfaces. These will show up by default as OPTn interfaces. You can rename them to whatever you like (maybe LANn instead?) - just be sure to enable them as well. Here is a screenshot of my interfaces:

pfSense Interface Assignments

2) Create a new bridge that has the original LAN interfaces and all of the LANn as members.

pfSnese Create Bridge

3) Add a firewall rule to allow traffic across each interface of the bridge. I would suggest starting with a rule like "Protocol: any, Source: LAN subnet, Destination: LAN subnet". Depending on your needs you may also want to add a rule to allow internet access as well.

Related Solutions

PfSense with a bridge as a LAN interface : traffic blocked between interfaces

I had exactly the same problem.

After adding firewall rules from the bridge member interfaces to the bridge network it seems to work.

Cheers Cidi

Firewall – pfSense router on a LAN with two gateways

If you setup your whole setup something like this:

New WAN |  
         --> pfSense --> LAN
ADSL    |

so the pfSense gets 2 internet connections.

The above setup should work without too many problems, as the servers will now only have one gateway to use.

Best Answer

Related Solutions

PfSense with a bridge as a LAN interface : traffic blocked between interfaces

Firewall – pfSense router on a LAN with two gateways

Related Topic