Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 26 subscribers
  • Views 6124 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

I dont understand how to set VLAN

julien trochel

Hi

I have zyxell firewall and i need to replace it by a new solution, so I use XG evaluation on a hyper-v VM and i try to understand how to set vlan in this sophos

i try to reproduce all the setting of my zyxell for migrating easely

 

Sophos XG  have two NIC card one LAN and other WAN and i need to use VLAN

LAN  have a static IP

WAN receive Dynamic IP from ISP

 

- First i have a procurve switch where i choose port and set it up in Trunk mode and i tag my vlan 1-4

- i create 2 VLAN port 1.2 and port 1.4 where i put static IP, i see i can't use VLAN ID 1 why ?

- Computers are in VLAN 2 can't ping or access to the port1.2 that same for VLAN 4 and port 1.4

- State and speed of the VLAN interface are on N/A

 

I read many thing on forum and web but i don t find the good way do i need to change something on physical interface LAN ?

 

Thanks

 

This configuration is ok with the zyxell

 



This thread was automatically locked due to age.
Parents
  • 0

    Julien,

    when you configure the physical port, the IP configured on it is already in VLAN 1.

    Once you have created the additional VLAN on the LAN port and zone, with a LAN to LAN firewall rule you are able to allow traffic between VLANs. I have the same configuration at home (I am using a physical HW box) and it works with no issue.

    Please share screeshots of your config.

    Thanks

  • 0 in reply to lferrara

    Ok that good for Vlan 1 i suppose that before so i do the good setting, my ip adresse interface can talk to my VLAN 1 computers

     

    So you say i need to make rules on firewall for VLAN interface for traffic between VLANs? Which rules cause i don t wan't computer into VLAN 2 can talk to VLAN 4

  • 0 in reply to julien trochel

    I understand what is wrong

    I use Hyperv and Vswitch, the vswitch is configured automaticly for understand trunking so it can manage all Vlan ID of my real switch.

    So the solution is in my Virtual machin i need to build a network card by vlan and choose which VLAN ID each card manage.

    Card 1 - VLAN iD 1

    Card 2 - VLAN iD 2

    Card 3 - VLAN iD 3

    Then in my sophos i can t build VLAN, i just need to manage interface cause sophos don t know this interface are virtual.

    I hope my explication is understandable

Reply
  • 0 in reply to julien trochel

    I understand what is wrong

    I use Hyperv and Vswitch, the vswitch is configured automaticly for understand trunking so it can manage all Vlan ID of my real switch.

    So the solution is in my Virtual machin i need to build a network card by vlan and choose which VLAN ID each card manage.

    Card 1 - VLAN iD 1

    Card 2 - VLAN iD 2

    Card 3 - VLAN iD 3

    Then in my sophos i can t build VLAN, i just need to manage interface cause sophos don t know this interface are virtual.

    I hope my explication is understandable

Children
No Data