I acquired a new switch Unfi 16 POE. it is connected to existing switch HP 1810. APs are off the new POE switch.
New guest vlan 20 was setup of pfsense with rules allowing access to internet but not lan vlan. APs are configured to routed guest vlan 20 to guest network.
pfsense vm resides in vmware esx. so lan port group is configured to disable tag stripping (4095). When a device is connected to the guest vlan, it gets no IP and self assign 169.x.x.x. devices connected to the lan network has no problem getting IPs assigned from the router.
lan vlan to guest vlan ping works.
guest vlan to lan vlan ping failed.
Is anything needs to be configure on the hp switch? on the hp switch vlan tag can be assign to each port. like set the port connecting to unfi switch as a trunk port?
topology
router -> hp switch -> unifi switch > unfi APs
New guest vlan 20 was setup of pfsense with rules allowing access to internet but not lan vlan. APs are configured to routed guest vlan 20 to guest network.
pfsense vm resides in vmware esx. so lan port group is configured to disable tag stripping (4095). When a device is connected to the guest vlan, it gets no IP and self assign 169.x.x.x. devices connected to the lan network has no problem getting IPs assigned from the router.
lan vlan to guest vlan ping works.
guest vlan to lan vlan ping failed.
Is anything needs to be configure on the hp switch? on the hp switch vlan tag can be assign to each port. like set the port connecting to unfi switch as a trunk port?
topology
router -> hp switch -> unifi switch > unfi APs