OPNsense VLAN Interfaces

Create and validate VLAN interfaces on OPNsense to support the segmented switch configuration from Lab 1.

Tools Used

Steps Taken

  1. Created VLAN entries under Interfaces → Other Types → VLAN for VLANs 10–70.
  2. Assigned each VLAN to an OPT interface under Interfaces → Assignments.
  3. Enabled each interface and configured static IPv4 gateway addresses.
  4. Applied changes and verified interface status.
  5. Validated connectivity using OPNsense diagnostics (pinging each gateway IP).

Screenshot: VLAN Definitions

OPNsense VLAN definitions
Click to view full-size: VLAN entries created for all network segments.

Screenshot: Interface Assignments

Interface assignments for VLANs
Click to view full-size: OPT interfaces mapped to VLANs 10–70.

Screenshot: Interface Configuration

Interface configuration with static IPs
Click to view full-size: Example of a VLAN interface enabled with its gateway IP.

Screenshot: Interface Status

Interface status overview
Click to view full-size: All VLAN interfaces showing as 'up' after configuration.

Screenshot: Ping Validation

Ping diagnostics
Click to view full-size: OPNsense successfully pinging each VLAN gateway IP.

Network Diagram

Logical network diagram
Click to view full-size: Logical diagram of VLANs, switch, and OPNsense firewall.

Outcome

All VLAN interfaces are now active on OPNsense with correct IP assignments and verified operational status. This completes the firewall-side foundation for the segmented network created the switch config lab. With VLANs online and reachable, the next step will be configuring DHCP scopes for each network segment.