Configuring a Management VLAN

Home Network Guy
Home Network Guy
10,147
0
Published 2024-03-01
Learn how to configure a management VLAN using #OPNsense, a #TPLink network switch, and a #Grandstream wireless access point.

I have been receiving an increase in questions on how to create a management VLAN so I thought this would be a great topic to cover since all of my guides to date use the default VLAN 1 as the management network (which I always note that you have to ensure you don't allow untrusted devices on that default network by assigning unused ports on the switch to a different VLAN such as the GUEST VLAN).

For a written version of this guide, please visit my website:

homenetworkguy.com/how-to/set-up-management-vlan-f…

Affiliate links for devices used in this video:

Any mini-PC network appliance: amzn.to/3UXYQby
TP-Link T2600G-28TS: amzn.to/3wyKog3
Grandstream GWN7660: amzn.to/3P3vrJ0

Chapters:
00:00 Introduction
02:36 OPNsense: Configure the MGMT VLAN
09:16 Switch: Configure the MGMT VLAN
11:28 Switch: Setting Wireless AP to MGMT VLAN
14:20 Testing the MGMT configuration
16:30 AP: SSID configuration
17:44 Optional: removing the LAN interface

EP38
All Comments (13)
  • @diedrichg
    Thank you for these videos. I've been watching your network setup videos in preparation to switch to OPNsense from Untangle since they are dropping the home user license. Thank you for your knowledge and hard work putting these videos together - I like your methodology as your networks are the same layout as I prefer to have mine.
  • @MuffFlux
    Faaar out! Used your other guides which were magic and then suffered through configuring the management VLANs myself. After multiple hours spent across multiple days and 2 factory resets, I got it done 24 hours ago only for this vid to come out today! Will definitely give the video a review and compare it to my config! Crazy timing!
  • @ttuuxxeerr
    thanks for explaining that we can remove the LAN interface, I was a bit afraid as it was the parent of the different Vlans.
  • @ZombieLurker
    Great videos! They have really helped me out a lot setting up my home lab with opnsense. I am having trouble currently though migrating my tagged vlans to LAGGs. One from opnsense to a Mikrotik CRS317-1g-16s, then second one to a CRS310-8g+2s. While having a 3rd trunk to my desktop. Currently have them all working, tagged on LAN from OPNsense to the CRS310 but not when adding in the new switch. Mikrotik RouterOS is super frustrating lol I hate it.
  • @joecook4451
    i was wondering can you also set the ports on that switch to just port isolation, so it makes opnsese do all the routing? i was thinking of getting the tplink TL-SG1210MPE. many thanks for all your helpful videos btw!
  • @marcosfeng
    Could you technically use that old LAN port as part of the LAGG, after you set up the mgmt vlan and delete the LAN interface?
  • @donaldb934
    Random question about OPNsense, why does OPNsense come out of the box with remote (over WAN) access to the webgui enabled? IT also has an intense warning when you try and change this setting: Settings > Administration > Listen Interfaces
  • @zyghom
    very nice and informative guide but question: imagine all my servers are on 10.x network (vlan 10) while home devices are on 100.x (vlan 100) and IoT on 200.x (vlan 200) So my day2day laptop is of course on HOME vlan 100 (as I need to everything: shares, printers etc). Now, if I want to access FW I have to switch my laptop to MANAGEMENT vlan (in my case vlan10) because for security reasons I restricted OPNsense to listen to only on vlan 10, right? kind of incovenient Or am I missing anything here?
  • @raffler5555
    atm i have a opnsense running as a vm on a synology as a test setup. i wanted to create a guestnetwork with your video. when i connect with my devices, i am assigned an IP from the correct ip range. but i fail to get internet access.... i am rather sure, that i have the same settings as you did in ur video for the firewall. where could be another error?
  • @Carl-kg7rm9zz8y
    Can you please show this with your cisco switch as well? Been struggling for a couple of weeks and every time I think I've succeeded, something breaks, the interfaces can't communicate with each other and I get locked out.
  • @ppetrix
    Nice. But why that much Memory usage . 6 out of 8 Gigabytes. On a fresh install. Wow. This is more then double compare to a Pfsense instal😢l