(I have tried inserting an image of my network diagram with both the image html link and attaching a file, cannot get either one to work. I will attempt to explain the network the best I can, having a diagram would really help)
The short version..im trying to run opnsense and home assistant in vm’s on virtualization station. I use vlans, and im trying to figure out how to get Qnap management IP addresses to be assigned based on vlan tagging. I can get vlan tags on the homeassistant interfaces and can get vlan working for clients connecting to lan, but cant get Qnap itself to accept tagging to determine what subnet it connects to.
I use vlan tagging as a way for all clients on the network to be connected to certain subnets.
QNAP TVS672X (mainboard Ver 2.0)
QuTS h5.2.4.3079
Hi, I wanted to see if anyone had a suggestion on if this is possible. I have been trying to get this to work on my TVS672X to no avail. It would seem that what I want to do is simply not possible without the ability to add VLANs to Virtual Switches, but maybe someone has a better way, and/or figured it out?
I would like to replicate the current setup I am using.
Current setup
Intel NUC 11 with add on 2.5gb nic on empty nvme---so has 2 NICS
Proxmox bare metal
VM1=OpnSense
VM2=HomeAssistant
NIC 1 is passed directly to OpnSense VM using PCIE passthrough
NIC 2 is shared by Proxmox and both VMS
NIC 1=WAN
NIC 2=LAN
Virtual NIC connecting both VMS and Proxmox
Netgear WAX214v2 access point with vlan support
Main LAN=not tagged, hosts all main hardware, proxmox IP, main IP for Synology DS220+, all switches
VLANS: each VLAN is a different subnet of the main lan
VL10=Management=only used to manage main Lan with a firewall rule, no other use. No internet unless needed for some reason.
VL20=Trusted Clients (main daily driver Lan for all trusted clients, including iPhone and iPad and DS220+ obviously has internet access
VL30=Work (only used for a single work laptop. Has internet
VL40=Surveillance (only used for CAMS, DS220+ had 2nd NIC attached to the network for access to cams..... no internet)
VL50=IOT (everything else, mainly smart home stuff. Most items on here do not have internet access unless they cannot work without it, then a firewall rule is made just for the individual client to allow access)
OpnSense has 5 VLANS, Main LAN is untagged, all other LANS tagged.
Proxmox receives its IP address from Opnsense, as does Home Assistant
HomeAssistant has multiple virtual NICS= Main LAN, VL20, VL50 (I have had issues with homeassistant access clients on VL50 with just firewall rules, so had to give it an interface on this LAN, no, I don't like that)
DS220+ nic one is on vlan20, nic 2 on vlan40 for surveillance
I have 4 total switches, all are TP Link TS10*G Enhanced series, smart (semi managed) switches. They are not layer 3, but do support Vlan tagging.
With my current setup, OpnSense controls the entire network, and serves IP addresses to everything including its host, Proxmox. Everything works as it should, if a client connects to a certain port, or a certain SSID, it receives the correct IP address subnet based on the vlan schedule.
I bought the TVS672X with the plan (hope?) that it would replace both the Synology DS220+ and the Intel NUC.
I would like to run this exact network setup on the QNAP.
QNAP VM's hosts both OpnSense and HomeAssistant. QNAP 10G nic1 is LAN, 1G nic2 is WAN. Nic#2 service binding has all QNAP functions removed.
QNAP gets its IPs (multiple needed) from OpnSense
all clients connecting through the 10G Nic 1 to get IP's and network access from OpnSense
HomeAssistant running on QNAP getting multiple IPS from different VLANS from OpnSense----on internal VM network.
So far, no bueno. I can get vlan tagging to work on the lan nic, clients can get proper IP’s. Homeassistant has multiple virtual nics, with vlans assigned in HA, and that works to. The problem, is that Qnap cannot get IPs from this setup. I would like the Qnap to have atleast 3 different IPs for the different networks, and I cant figure out how to make it work. I have even tried using the 3rd nic plugged into the main switch, using vlans on the 3rd nic to try and get those tags to Qnap, and still wont communicate on them.
I’ve seen other post where people are not happy with the implementation of virtual switches and vlans, and I think this is probably my problem, just wanted to see what others think. I will also open a ticked with support, just wanted to start here first.
Thanks!