Sanity Check: Cabling dual ISPs into separate VLANs and then plugging each one into the Sophos WAN port.
Hey All,
How are you doing? I wanted to reach out and ask my fellow network engineers at Sophos for a sanity check on my setup. I have a cluster of XG125 firewalls and my goal is to achieve active passive cluster setup in addition to having an option of multiple ISP gateways terminated into each individual interface on the firewall.
I've created 2 vlans (1001 and 1002) and have ISP1 going into a port in vlan1000 and ISP2 is going into another switch port on the same switch.
I then have Sophos Primary Port2 (WAN) going into vlan1001 switchport and Sophos Aux Port2 going into a port in vlan1002 .
I also have a crossover cable connecting Port3 on both
All ports are access ports and are tagged with those vlan tags respectively.
Is this a favorable setup or have I done something incredibly incorrect?
Reason I'm asking is that I also have Port1 going to the switch for both sophos devices and those are trunk ports on the switch.
I see a few dropped packet occasionally and was wondering if this was due to a loop i've created
Thanks in advance
Vlad
This thread was automatically locked due to age.