I'm currently using sophos UTM home edition for my home network. Being free it has limited 50 IP address. So I'm setting up my home dev esxi box which will have various vms running for work related tasks. I setup pfsense on esxi with two nics. One goes to home network, other is internal switch only. Home nic is used as wan nic on pfsense and vm switch is being used as dhcp for all vms built on esxi host.
Home network is 192.168.0.x. I assigned wan port 192.168.0.4 for pfsense. What i want is pfsense to provide ips to vms on some network range that I can access from pcs on the 192.168.0.x range. I also want pfsense to provide internet access to the vms from my home network. what i dont want is esxi hosts to communicate back to 192 network range.
I'm having a challenging time figuring out how to configure pfsense.
I was originally thinking of doing pfsense wan 192.168.0.4 then lan 192.168.4.1 with dhcp range of 192.168.4.10 to .254. I disabled the firewall so home network 192.168.0.x network can access 192.168.4.x range. Seems like pfsense didnt like that.
So I'm not sure if i need to setup vlans, or use a different ip range for lan side of pfsense and do some other routing when i want to access that range, something like dns forwarding etc?
Any suggestions appreciated.
Home network is 192.168.0.x. I assigned wan port 192.168.0.4 for pfsense. What i want is pfsense to provide ips to vms on some network range that I can access from pcs on the 192.168.0.x range. I also want pfsense to provide internet access to the vms from my home network. what i dont want is esxi hosts to communicate back to 192 network range.
I'm having a challenging time figuring out how to configure pfsense.
I was originally thinking of doing pfsense wan 192.168.0.4 then lan 192.168.4.1 with dhcp range of 192.168.4.10 to .254. I disabled the firewall so home network 192.168.0.x network can access 192.168.4.x range. Seems like pfsense didnt like that.
So I'm not sure if i need to setup vlans, or use a different ip range for lan side of pfsense and do some other routing when i want to access that range, something like dns forwarding etc?
Any suggestions appreciated.
Last edited: