I'm trying to find a way to use VLANs to isolate networks for my VMs. I'm using pfsense as a VM as well as a firewall, then my idea was to create VLANs on it, get that vlan tag to a portgroup and then the portgroup would strip that VLAN ID off the packet and hand it over to the VMs connected to that virtual network as untagged, so I don't need to configure VLANs on the VMs virtual network cards.
I found on the documentation that ESXi doesn't do native VLANs, so I'm wondering here how people do with a multitenant infra-structure? My idea is to use the physical switches to pass frames as they are regardless if they have VLAN ID traffic or not, and then control the traffic in/out on virtual networks using the VLAN tagging, which then should be stripped and handed over to the VMs in that network.
Is it possible to do that?
