I’ve used Netgear switches on vlans for a while and they are straightforward to set up but I believe you need to do things in a sequence for it to work. This week I set up a new pfsense box with vlans and a Netgear switch, these were my basic steps
-
connect to the pfsense box on it’s LAN port and configure the vlans etc. On my box I have 4 further ports which I use in a LACP lagg, this becomes my parent interface for my vlans.
-
on the switch I keep the first port as the default vlan 1 so I don’t get locked out of it. I create all my vlans (including a management vlan). I change the IP address of the unit to an IP address on my management vlan, there is also a setting under System > Management to enter in the management vlan ID (before you do this ensure you have one port assigned to the management vlan otherwise you will be locked out).
-
I then configure 4 ports for LACP, in your case you ought to just tagged the ports on each vlan, so for say ports 4 and 5 mark each with a T for vlan memberships.
-
Then in Port PVID I enter the vlan number for the port. If the port is tagged then I enter the lowest number.
-
Then I go back to vlan 1 and remove the ports from vlan 1 that have been assigned to other vlans.
Some other things I do is not to use vlan1, vlan2, vlan3 as these are defaults and number my management vlan 10 and the rest 20, 30 etc.
If you plug together the pfsense box together they should conmmunicate.
Then test out each port on DHCP to see you get an IP address.
I tend not to use the LAN on the pfsense box, it’s just there. You then need to have rules that allow you to view your various vlans in place.