so i'm still a huge networking newb, and may be misunderstanding what i'm doing here
for now, i was able to work around the issue to get some 'work' done, but ideally i want to go back and revisit how to set this up
i am using opnsense as my main firewall/"router", and had an interface configured on LAN with a static ip of 192.168.1.1, pretty typical of a default home "user" network
on the 7250, following fohdeesha's initial setup docs i assigned ports 1 through 24 (1 GbE) as untagged ports on VLAN 1 (DEFAULT-VLAN). i was reading that you shouldn't do this, but i only just got there and haven't gone back to 'fix' yet.
i removed all of the 10 GbE ports from this default VLAN 1, and added them to let's say VLAN 3 as untagged ports. this VLAN got a VE of 10.0.6.1.
the 7250 has a default route of 0.0.0.0/0 via 192.168.1.1 next hop.
after configuring 1 or 2 firewall rules on opnsense side, as well as a gateway on opnsense with 192.168.1.2 as the address on LAN interface, with a route towards 10.0.6.0/24 via 192.168.1.2 gateway, i was able to get stuff pinging internally
however, none of the hosts on address 10.0.6.2 through 10.0.6.10 can route or ping out to the internet. i tested a few times with manually created allow any rules from 10.0.6.0/24 network source on LAN interface destination any but this didnt seem to make a difference.
despite not having anything related to "VLANs" configured on opnsense side, am I supposed to set the port that contains the physical cabling between the opnsense hardware and the ICX 7250 to tagged with everything else as untagged? am i supposed to be overlapping port assignments to VLANs? that's where I'm a little lost i think, but this might not even be my problem.