I have a problem that I have not found an easy solution you could say.
I have an Admin VLAN that separates from all the standard VLANs about 20 “regular” VLANs.
And I want it to work like this, I put a device that should be inside the Admin VLAN to be configured within the pfsense DHCP via a MAC address. That basically the separation will be in pfsense via the MAC address of the device.
The equipment I have
Main Firewall - Pfsense
Two main switches - HPE Aruba 2930F
All other switches - HPE 1920s
My problem is just the wired connection. And in WiFI I open another hidden SSID and that’s it.
In wired connection all other ports in the switches are of other VLANs in untagged. And I want the Admin VLAN to work no matter what port I connect to the switch. He too will have to be untagged. So you understand the problem?
The only way that came to my mind was to actually go through each VLAN and set a fixed address for each admin device. But I do not want it to be like that. This will be my last option, I prefer to avoid such a solution as much as possible.
That’s why I’re turning here, hoping I’ll find another solution here that I did not think of.
I was thinking of playing with the bridge in Pfsense but I do not know how it behaved there and if it really is the right solution to this problem.
Hope I was clear on what I want to do …