Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 540 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Static LAG (active-backup) on Virtual XG Firewall not failing over automatically

micheldecibel

Hi

in a virtual xg firewall i made a LAG (active-backup) between 2 interfaces. The LAG connects to 2 core switches. From the switch connected to the primary lag-member i can ping the LAG-IP. When i disconnect that cable the automatic failover to the backup lag member does not work. From the second switch i can not ping the IP....

Only when i manually change the primary interface to the connection with switch 2 it works. this is not good for an automatic redundant setup... Does this even work with the virtual sophos? (version 18.5.1 build 326)



This thread was automatically locked due to age.

Top Replies

Parents
  • FormerMember
    0 FormerMember

    Hi Michel, Thanks for reaching out to Sophos Community.

    Make sure that you've enabled EtherChannel or LAG or equivalent module in the peering switches. I was able to reproduce this scenario within the lab with two different switches.

    If everything seems proper from the configuration standpoint, then take SSH , Navigate to Option 5 > Option 3 Advanced shell and run the command --> tail -f /log/syslog.log | grep -i 'Port\|8021q'. After running the command, Perform the failover as you did before, collect and share the logs.

Reply
  • FormerMember
    0 FormerMember

    Hi Michel, Thanks for reaching out to Sophos Community.

    Make sure that you've enabled EtherChannel or LAG or equivalent module in the peering switches. I was able to reproduce this scenario within the lab with two different switches.

    If everything seems proper from the configuration standpoint, then take SSH , Navigate to Option 5 > Option 3 Advanced shell and run the command --> tail -f /log/syslog.log | grep -i 'Port\|8021q'. After running the command, Perform the failover as you did before, collect and share the logs.

Children