VLAN Config on 1-port NUC with trunk from pfSense box

[AdamJ]

My Setup:
Proxmox on NUC (192.168.150.10) with single ethernet port connected to a pfSense router.

I would like to change the connection from pfSense to a trunk with 2 x VLANs - VLAN50 (192.168.150.1/24 - routed to VPN-WAN) & VLAN60 (192.168.160.1/24 routed to CLEARNET-WAN) & still be able to access the Proxmox web managment interface on 192.168.150.10 in the VLAN50 & be able to assign some VM/Containers to VLAN50 & some to VLAN60.

I am confused about how I should setup the network config on a single port Proxmox box. I already have the new trunk with VLAN50 & 60 setup on pfSense.

My current Network settings (pre-VLAN trunk connection) is:

auto lo iface lo inet loopback iface eno1 inet manual auto vmbr0 iface vmbr0 inet static address 192.168.150.10/24 gateway 192.168.150.1 bridge-ports eno1 bridge-stp off bridge-fd 0

 

[Lorenz.S]

Hi,

there are two solutions:

1.) split the VLANs on the interface: eno1.50 and eno1.60 and for example use eno1.50 in vmbr0 and eno1.60 in vmbr1
2.) split the VLANs with a VLAN-aware bridge

personally I would recommend (1). Therefore you have to create two "Linux VLAN"s in the Web-UI, configure vmbr0 to use eno1.50 as bridge port and create a new vmbr1 with eno1.60.

 

[AdamJ]

Thanks for your excellent prompt, clear reply. I tried your solution1 - & everything is exactly how I wanted it.

This is my config now for reference if anyone else needs a similar solution:

auto lo iface lo inet loopback iface eno1 inet manual auto eno1.50 iface eno1.50 inet manual auto eno1.60 iface eno1.60 inet manual auto vmbr0 iface vmbr0 inet static address 192.168.150.10/24 gateway 192.168.150.1 bridge-ports eno1.50 bridge-stp off bridge-fd 0 auto vmbr1 iface vmbr1 inet static address 192.168.160.10/24 bridge-ports eno1.60 bridge-stp off bridge-fd 0