PfSense and Hyper-V using one NIC trunk
Вставка
- Опубліковано 7 вер 2024
- My first video showing how to configure PfSense in Hyper-V with one virtual NIC.
Get-VMNetworkAdapter -VMName "000 PFSense" | Where-Object -Property MacAddress -eq "00155d0061f" | Set-VMNetworkAdapterVlan -Trunk -AllowedVlanIdList "1-10" -NativeVlanId 99
get-vmnetworkadaptervlan
thanks dude, i was a bit confused, i just had one vlan before for the wan with pfsense bear metal no hyper-v, but now i understand trunk have more vlan inside for the lan po(r)t as well, so i make vlan 10 for wan and vlan 3 for lan on my mannaged switch means vlan3&10 are tagged to support the untagged, work nice thanks to you my server 2022 with pfsense only need 7watt power and is a print server and file server and distribution server and firewall at first
Great, glad to hear it. I just upgraded to server 2022 and have a bit of a game getting the LDAP working with the Nic team. A feature call SET needed to be configured.
And why you have just one video on the channel? Come on! This was best video about what I aming to achieve.
Thanks, but comes down to time! However I am working on a new video transitioning from fttc to fttp.
Nice video friend,
Thanks !
Great video! Thanks for taking the time to make it. I'm not doing exactly what you are doing but I was wanting to understand how to set up my teamed physical NICs as a trunk then use that trunk with HyperV. I think this got me what I needed. I don't think I need to use the powershell command though, I will be using a hardware router/firewall (EdgeRouter4) for the purposes you used pfsense for. I think I will just be setting a vlan ID on each VM. One VM will need to be setup to access multiple VLANs though, so it might need that powershell command to be used... Not sure if you can define multiple VLANs in the HyperV GUI settings. One thing I didn't really understand though was the "-NativeVlanId 99". What's the point of setting the native vlan id? When will it ever get used?
Thanks Techy I like theradioson intend to use Proxmox, my mother in law's new server, (I am getting a new one in a week or so) is in the planning, I have most of the physical hardware just a debate if a 50 quid managed switch or a double nic. I think the switch is going to win, as there are plans for poe cctv cameras. I have watched countless videos, and your one made sense!
Thanks John, managed switch every time, you’ll have more more granular control. Just buy as many ports as possible!
@@alandjbaker Thanks
@@johnh10000 do you have any suggestions for a follow up video?
@@alandjbaker I'll have a think about some suggestions, I got pfsense running today, but no internet on the lan. How and where did you do the bridge?
Check the firewall rules that allow all to the WAN if that’s how you want it and if everything looks like it should be working then give it a restart.
Hey great video, I'm looking to do this on proxbox but the concept is the same. Cheers!
You mentioned you would add vlans later, presumably for some segmentation like iot, guests etc.
In one step you chose not to enable vlan on the hyper-v setup portion. Are you planing to let pfsense hendle all the segmenting? I've seen other people handle the segmenting in the hypervisor and it shows up in pfsense as different physical nics which it then just passes on to a managed switch that can decipher the tagging. If this is the case I'm curious what would handle firewall rules, the hypervisor or pfsense?
Yes your right, add as may Vlans as you like from inside PfSense.
@@theradioison that's interesting. So you can setup the vlan at either end so to speak
@@theradioison I also intend to use Proxmox, my mother in law's new server, (I am getting a new one in a week or so) is in the planning, I have most of the physical hardware just a debate if a 50 quid managed switch or a double nic. I think the switch is going to win, as there are plans for poe cctv cameras
@@johnh10000 yep CCTV on it’s own vlan!
THANKS PRO
Hi again. Did you update to 2.6? On my hyper v host I had big problem with upload. It slow down from 17mbps to 0.5mbps. Reverted to 2.5.2.
I did indeed experience this issue, my now connection of 900megabit up and down slowed to very slow speeds, I did revert for a while, then I used Opnsense for a while as that is based on freebsd 14 which worked, I have now gone back to pfsense plus which is freebsd 14 and it works at full speed! Pfsense CE is still on freebsd 12.3 docs.netgate.com/pfsense/en/latest/releases/versions.html
Please please please use hyper-v checkpoints before upgrading!
I did export config files through pfsense GUI and also exported VM as a backup and also I always have prepared another cloned pfsense VM for quick swap :) revert to 2.5.2 took 5 minutes which 4 of them was connecting screen for headless server to do it. :p
Sorry did not get back sooner. Ideas for your channel might be, adding a virtual media server, and how you, might configure it. Ie split / change access rights on the tv, when little folk maybe about. Well my new server is up and running at my Mother In Laws, brother in law also a tech! However we can't sort out pfsense, physical routing. Ping another video idea!Onboard gigabit nic, and usb nic, I installed pfsense, using nothing but virtual nics worked fine. Added a physical interface to pfsense, the machine on the end of the cable, got a connection, but no ip and presumably no routing.
Network setup.
isp -> 192.168.0.x
pfsense wan -> 192.168.0.x
pfsense lan -> 192.168.1.1 -> vms fine
[need this to be propergated to say usb nic giving out dhcp ips 192.168.1.100 -> 192.168.1.200
and for potential network expansion I would like a so called IoT private network of say
pfsense opt1 ->10.0.10.x most like likely 10.0.10.100 -> 10.0.10.200
also dishing out dhcp allow internet out, but controlled internet in.
If you have time can you help? I copied the routing of the vm lan to the opt lan but that gets me no ip on the usb nic.
Can I do same trick with Windows 10 Pro or I need Windows server?
I don’t see why not, give it a try and let me know!