Setting up VLAN for ISP connection

Just updated to 18.5.1 MR-1. Was hoping maybe there was a fix for this but still doesn't seem to be a way to enable a port/create a physical interface without an IPv4 or IPv6 configuration.

Hi shred: On the Physical Interface select zone as in LAN - with any fake LAN which is not getting conflict with any existing network of XG ( so it will not reflect in WAN link manager). Later on add VLAN over this Physical LAN Interface and for that VLAN section select zone as in WAN with required VLAN tag and that will only show that VLAN interface inside the WAN Link manager. I hope this will help you to achieve your requirement posted in the thread.

Here in the below snapshot, I have chosen an interface for reference from my setup, a similar tweak you may apply on your actual interface where you wanted to achieve tihs. 

Reference snapshot:



Add VLAN on this LAN Port as per below ( where zone is now WAN for this VLAN Interface):

Thanks Vishal - I've changed my physical interface from the WAN to LAN zone and that has removed it from showing up in the WAN link manager. However, the "Interfaces" section under the main "Control center" page is still showing up as orange (e.g. degraded) but when I click it, it shows only two Gateways, my VLAN ISP and backup ISP, both of which show a green status. Perhaps this is a bug or am I missing something?

Hi shred: Unfortunately Interface may show orange as the main interface on which WAN with VLAN is configured that LAN (main interface) is still have status unplugged. As of now no direct way to add VLAN on WAN Interface. Either you may raise FR for the same or you may upvote below FR thread which may full fill your last comment requirement.

https://ideas.sophos.com/forums/330219-xg-firewall/suggestions/43821441-request-to-hide-dummy-interface-on-wan-link-manage

Hi shred: Unfortunately Interface may show orange as the main interface on which WAN with VLAN is configured that LAN (main interface) is still have status unplugged. As of now no direct way to add VLAN on WAN Interface. Either you may raise FR for the same or you may upvote below FR thread which may full fill your last comment requirement.

https://ideas.sophos.com/forums/330219-xg-firewall/suggestions/43821441-request-to-hide-dummy-interface-on-wan-link-manage

Thanks Vishal, I voted for that request. The strange part is it’s not showing the physical interface with a status of unplugged, it definitely indicates something is plugged in. It seems to me there’s some underlying bug that shows the overall interface status as orange when all gateways are in fact green - that seems pretty clear to me. However, I think perhaps the real issue is there’s no way to setup a physical interface without an IPv4 or IPv6 configuration, especially when there’s a VLAN on that physical interface with an IPv4 or IPv6 configuration. Anyways, appreciate the help and hope it gets fixed in a future update.