pfsense and Unifi VLANs , Securing VLANS

I just inherited PfSense at new job, your video's are so helpful, please keep them coming, thanks again.

Very much appreciated this vid.

Very good video! easy to understand and follow. please do more pfsense and unifi stuff

It's pretty incredible how much Unifi Network has changed since this video.

Nicely done, looking forward to the next video in the series.

Really nice video, thanks for sharing. HOpe to see more like this, specially PFsense combined with unifi.

Well explained, thank you!

Great video as always!

Awesome tutorial! Thanks for sharing.

Thank you sir.

Nice vid... I like these more and more...

pfsense + unifi = awesome
Maybe next vídeo: captive portal (pfsense) using unifi APs and authentication by FreeRadius?
Congrats, good job.

Good video. Please make more firewall rules videos.

Ignores TP Link between pfsense and synology. Lays out IP/VLan Schema correctly....I knew I liked you from Tom's live streams. Glad I found your channel! Keep up the good work!

It's general best practice to create a management vlan and set that as the native vlan for APs. You could then also put the switch(s) on the management vlan under the device settings -> services -> management vlan.

Awesome video, just subbed. I can't wait to see the pfsense firewall rules video. I have almost the same setup and I have the rules setup so that the Guest and IoT VLAN's can't access my main LAN, but I can't figure out how to stop the devices from my main LAN from accessing the Guest and IoT VLAN. When I make a rule blocking that traffic, I end up stopping all internet on those VLAN's. So I know I'm doing something wrong, I'm excited to see if you touch upon that in your new video. Keep up the great work.

This is very useful

Combining the 2 still looks scary to me, but these videos would be what I'd need to get going (hopefully). Can you do setting up a VPN and assigning certain devices (ie Apple TV 4K, SHIELD TV Pro, certain computers) to them? That'd be the main reason I'd do that setup. Great video as always!

Thanks

love ur video

Nice

I would like to see in a future video: how to setup PFSense Traffic Shaping (QoS), and if you could, a way to stablish how much MBPS can that router route with it.

Excellent video, continue with videos on pfsense and unifi network.
Do you provide remote assistance for network configuration (pfsense and ubiquiti products), with teamviewer for example?

I love your CZcams channel and info! This video is perfect as I have a Pf Sense 6100 on order and the same 8 PoE Enterprise switch. I have a Qnap h12388x Nas that I want to media server videos. The upcoming firewall video sounds great. I have lots of questions but with home computers and NAS on one VLan and Tivos, Roku etc on another VLan, IoT on another Vlan etc. Is there a way to have my Nas stream to my VLan with Tivos Roku etc safely using firewall. This would be across the two different Vlans? Again love your channel and explanations spelled out.

Why not move LAN to VLAN 10 and disable the IP subnet on the physical link?
On a trunk link, it is much more common to not have an IP subnet on the physical link itself.

Can you do a video like this but with multiple physical uplinks? To further segregate traffic per VLAN

For this exact demo, can I use a Later 2 switch from the Unifi line or do I need a layer 3 switch?
Edit: As long as we have the pfsense it can do the routing between Balans right?

Also, in one of your upcoming unifi videos, could you show how you start unifi network on your pc? The only way I can get it to run is to run the installation program each time and then open it in Google Chrome. PITA. There has to be a better way. Thanks.

How do you access the Hik Camera with Unifi ? without a NVR

I would like to see how to configure pfsense when isp modem is on gateway mode!

Gracias por el video, podrías hacer lo mismo con omada? Saludos.
Thanks for the video, could you do the same with omada? Greetings.

Do you need to have an L3 switch to do this or could you do it with a Unify L2 switch?

I run pfsense on my QNAP TVS-h1688X (W-1250 Xeon 12 core at 3.3GHz). Could you not run pfsense on your Synology and save having to buy say the 6100?

can you use Fortigate as a gatewate with a VPN from the unifi console?

is a USW (managed switch) mandatory to have between the pfsense and Unifi controller for multiple VLANs (multiple WIFI networks) ?

You don't need to create the 192.168.10.1 (default LAN) network in Unifi?

Have you found any issues with 3rd party DHCP providing to UNIFI equipment? As an example, if you were using a SonicWALL firewall to provide VLAN/DHCP information for your Unifi switch & access point, have you had any issues with getting a DHCP address on the guest VLAN? Perhaps it was patched at some point but I've noticed it on a few networks.

So the Default network on Unifi can just be ignored? Since it was set to 192.168.1.0/24 but your devices have an IP in 10.10.10.0/24

How would the blocking rule block the Guest network to my Lan?, I don't want them to be able to access.

So PFsense is opposite of unifi in firewall rules. Unifi everything works off the hop, PFsense you have to open it up. I have a Edge router and flex mini switch i want to mimik this setup with as USG's are never in stock. I think i can follow your edge router video for this setup.

Is it only vlan only in unifi or should you do the other option?

Next time, do this in dark mode.

I cant get my unifi 8 port poe switch to be "adopted" nothing shows up for me. Dont know what im doing wrong. My pfsense is connected to a netgear s3300 poe switch and from there I connected my unifi 8 port switch but nothings happening. I see it connected on the pfsense dhcp lease but i cant adopt the switch or my aps to my unifi network