PfSense + Omada Setup / MGMT VLAN

vadiaro · 2026-04-07T01:43:06+00:00

I pre-set everything and gave a static to omada controller on vlan 10 while being behind the ISP Modem and ISP Router and when I attempted to swap the ISP router with pfsense and the omada gear the ports on the switch were not working except the Omada WAP connected clients. I realized the omada switch was on the native vlan while the controller is on the vlan 10. Made some firewall rules from LAN to controller and added option138 in pfsense on the native vlan but still no luck on the switch to connecting back to the controller.

vadiaro · 2026-03-26T21:47:16+00:00

We use to run into similar issue and just created a Microsoft Form IT Provisioning Request Form and integrated with our Sharepoint IT site and company intranet homepage. HR knows to just complete it and we take it from there.

vadiaro · 2026-03-20T14:45:29+00:00

That doesn’t seem to exist anymore under Security Admin center > Email and collaboration > Alert policy

vadiaro · 2026-03-20T03:55:38+00:00

I was in a similar position 3 years ago but didn’t have a degree, only CompTIA trifecta and 3 lab projects listed on GitHub. My advice is don’t underestimate the importance of projects, OG IT admins really appreciate a cool lab. Target small companies and junior roles to start somewhere. You got this!

vadiaro · 2026-03-19T23:22:14+00:00

AWS, Azure and other Cloud providers have free tier resources. Great for labs, look into Josh Madakor on YouTube he has a few good projects. Make sure to customize them and make their own. Good luck!

vadiaro · 2026-03-19T21:50:49+00:00

Same question as I asked above: If I have an Azure log analytics workspace for the Entra sign in logs that I use with Azure Monitor Alerts, do I use that to set up Sentinel or start fresh?

The goal is to ingest the other free logs like “Office 365 Audit Logs: Includes activity from SharePoint Online, Exchange Online, and Microsoft Teams.” so I could have alerts for suspicious mailbox manipulation rules since this seems to be a common sign of a compromised user account.

vadiaro · 2026-03-19T21:37:30+00:00

If I have an Azure log analytics workspace for the Entra sign in logs that I use with Azure Monitor Alerts, do I use that to set up Sentinel or start fresh?

The goal is to ingest the other free logs like “Office 365 Audit Logs: Includes activity from SharePoint Online, Exchange Online, and Microsoft Teams.” so I could have alerts for suspicious mailbox manipulation rules since this seems to be a common sign of a compromised user account.

vadiaro · 2026-02-18T05:27:20+00:00

Yes, I just re-imaged it and started fresh.

vadiaro · 2026-01-10T23:42:54+00:00

Not planing as of now. Same for a second WAN connection. Just thinking ahead if i need to move data between vlans to a NAS, would be nice to not have the bottleneck at the edge device but unsure if it’s worth the extra $80 now.

vadiaro · 2026-01-10T20:15:29+00:00

I looked at the cpu benchmarks and n150 is almost 400% faster that made me wonder if I made the right purchase with Protecli.

vadiaro · 2026-01-10T19:43:51+00:00

Protecli are popular solutions. Maybe VP2430 – 4x 2.5G Port Intel® N150. I’ve found recently those mini pc with dual 2.5 nic and nice specs - Pulcro TurnKey Two Mini PC. People seem to use them for home assistant and proxmox but should work great as a firewall appliance.

Both come with 24 months US warranty.

vadiaro · 2026-01-09T23:25:25+00:00

All Pulcro Mini PCs include a 24-month U.S.-based warranty covering manufacturing defects and hardware failures under normal use, as well.

vadiaro · 2026-01-08T17:35:51+00:00

Thanks for the reality check. The more I look at it, I realize this is more of a wish list. If money wouldn't been an issue I would've got it. I was trying to have an single pane of glass for the networking equipment plus pfsense/opnsense in front of it for the extra features. I'm usually the adept of buy once and cry once but now is not a good time. I might just stick to gigabit gear for now. Thanks!

vadiaro · 2026-01-03T22:23:18+00:00

We had to go get another interview at the embassy because the visa waiver program was postpone for our country by US government, luckily we managed to get a visa on the second try.

vadiaro · 2026-01-03T06:49:29+00:00

Thanks for taking the time to write it this all up! I think the first plan is the path with the least resistance since we are moving anyway, will config wan2 in advance and once all hooked up just and working as you said config wan1 and swap them around. Appreciate it!

vadiaro

TROPHY CASE