Configuring XCP-NG VLANs using pfsense, UniFi, & MikroTik Switches

16 thoughts on “Configuring XCP-NG VLANs using pfsense, UniFi, & MikroTik Switches”

• My question is can your physical pfSense router give dhcp leases to virtual machines on your XCP-NG hypervisor that are not on the native VLAN? I've been having trouble with that.

• I have Pfsense running on its own machine. Is there a way for Pfsense to reboot after a power outage?

• where/how do you handle the routing between vlans if you do not define them in pfsense? or do you not have the traffic leave those vlans?

• Hey Tom,

  I have a question regarding DNS names and HTTPS certs. I see a subdomain instead of the IP addres in the address bar on both the UniFi controller and Xen Orchestra.

  Did you do that by entering a subdomain in the control panel of your domain registrar for both and pointing them to your external IP. To then port forward the subdomains from Xen and UniFI to their internal IP addresses.

  Than with the HTTPS certs, do you have a wildcard on your lawrencesystem.com domain which will apply the HTTPS cert on all domains inside lawrencesystem.com?

  Thanks in advance for your time.

• Can u do a video on setting up squid and squid guard in pfsense? Is there a free non self signed certificate we can use?

• Is it pronounced "Micro-TIK" or "Me crow tik"? I always thought it was the former not the latter.

• Would really love if you had some reviews of Palo Alto, Fortinet or Cisco gear on your show.
  That’s what our customers use.

• Ok I get it with xcp-ng and virtual pfsense. But on the physical pfsense you have VLANs defined, right? Or better question: When I have a physical pfsense with only one WAN and one LAN then I must define VLANS in pfsense, correct?

• i have a intel nuc with esxi installed. can i create a new vm with pfsense and use it? i only have 1 networkport though

• Mr. Lawrence thank you for another excellent video. One question, is there any way to connect an monitor an UPS to the XCP-NG server so that the server could gracefully shutdown the VM's?

• Not sure if it's the same with XCP-NG, but with ESXI there's a limitation to the number of NICs you can assign to a VM, I hit that limit and needed to trunk all VLANs in via a virtual NIC. In ESXi you need to set VLAN ID 4095 for the Port Group in order to trunk ALL VLANs through to your pfSense VM's network adapter, from there you can then define all the VLANs you need inside pfSense against that NIC.

• Glad to hear you are warming up to Mikrotik, it is a great brand to get into with a steep learning curve but probably as good as pfsense just a lot cheaper.

• Can you get 10g throughput on pfSense / FreeBSD on XCY-ng? Mine tops out around 2.5g out, in is full 10g, with iperf….. no issues with Linux, so have had to passthrough a nic to get around the issue which is a bit limiting. Any tips??

• Il love so much opensource technos 😉. It works so well.
  It worses it a lot

• OH New Posted vid from tom ? Wait a minute LIKE it , make a comment <3 BEFORE WATCHING I'm sure I'll enjoy it.

• The most specific video ever, but precisely the one I needed as I was having vlan issues. Amazing video as always!

Comments are closed.