Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 29 subscribers
  • Views 724 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

RED 50 > Switchport Mode > Switch > VLANs

Tim007

I have two sites that use RED devices to link back to our central office; one site uses a RED 15, the other a RED 50.  Both sites are configured to operate in "Standard/unified" mode.  The RED 50 is set to Switchport mode "Switch".  At both sites, I also have VLANs for the guest WiFi networks, with the remaining traffic untagged.

The site with the RED 15 works exactly as I would expect; tagged and untagged traffic all makes it back to the main site and follows the configured rules as expected.  With the RED 50, however, tagged traffic doesn't seem to traverse the link back to the main site.

Ultimately, what I want is for the RED 50 to behave exactly like the RED 15.  Is that possible?  I attempted a few different configurations when setting Switchport to "VLAN", but was not able to get any of them to behave as desired.  At the moment, with the RED 50 I seem to be stuck with either I can have untagged traffic or I can have VLAN traffic, but I can't have both.  Am I missing something here?



This thread was automatically locked due to age.
Parents
  • 0

    RED50 is VLAN aware. So you have to configure the VLAN-functionality.
    RED15 is stupid ... so it sends all it sees to the UTM.
    Would be great, you provide a network sketch to show the requirements.


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

  • 0 in reply to dirkkotte

    Just to be sure: RED50/60 can be stupid as well. It depends on the mode you choose: Switch (RED20) or VLAN. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    ok, but I've observed that too. Packets with a VLAN tag are discarded by the RED50 in "switch mode".

    ... While RED15 forwards these packets. With a VLAN switch behind this device, you can create a "VLAN trunc".


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

  • 0 in reply to LuCar Toni

    As far as I can tell, on the RED 50, "Switch" mode drops traffic with VLAN tags.

  • 0 in reply to dirkkotte

    I have tried the VLAN > "Tagged (Trunk Port)" path, with gets me the VLAN tragged traffic, but not the untagged traffic.  As far as I can tell, I can get one or the other, but not both.

  • 0 in reply to Tim007

    this may work with an untagged (hybrid port).

    But i am not a fan of "untagged" traffic an a VLAN-Trunc. Simply tag all VLAN's.


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

Reply
  • 0 in reply to Tim007

    this may work with an untagged (hybrid port).

    But i am not a fan of "untagged" traffic an a VLAN-Trunc. Simply tag all VLAN's.


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

Children
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?