How to setup trunk port on Sophos XG?

Question

I am trying to setup a trunk port between My Sophos XG firewall and a managed switch. I have created VLAN's 2 & 3, and created DHCP servers for both of them. I need both of these VLAN's to be on port 2 of my Sophos box. When I connect to my managed switch trunk port, and connect my PC to VLAN 2 or 3 switch ports, I do not get an IP address from the DHCP server in Sophos. What am I doing wrong here?

This thread was automatically locked due to age.

lferrara · Accepted Answer

Stilian, 
 in order to create "router on a stick" proceed as follow: 
 
 configure a physical network interface with an IP (this is required for VLAN 1) 
 Add other VLAN on the same ports (always under Network Menu > Interfaces TAB) 
 Create the proper Firewall rules 
 Create a DHCP server for each VLAN Interface under DHCP TAB 
 
 You can assign the additional VLAN to LAN zone or create additional zone if you wish. 
 If you need inter-vlan communication, create the needed firewall rules. 
 Regards

lferrara · Answer

Bryan, 
 your configuration should work with no issue. Did you connect the same pc and received an IP address on VLAN 1 from XG? If the XG has already release an IP to a PC, it will not release another IP to the same PC (MAC-ADDRESS) in another vlan, unless you do not enable global dhcp options.

How to setup trunk port on Sophos XG?

Top Replies