Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 2 answers
  • Subscribers 29 subscribers
  • Views 15684 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Add tagged vlan to bridged interface

waghelak

Hi

I have a 4 port router with Sophos XG installed.

Port 1,2,3 - LAN (Bridged to have all on same subnet)

port 4 - WAN

Basically I wanted to make use of port 2 and 3 but wanted on same subnet, port 2 goes to upstairs switch and port 3 goes to my server room.

Problem I am having after making it bridged I seem to have lost a VLAN I had created which was tagged to port 1.  This VLAN was used for my wireless Guest access, for some reason I am no longer able to create a VLAN on ports 1,2,3.  When I try to create a vlan only interface available is port 4.

Any ideas on how I can achieve what I want?

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    This feature is not available yet; I hear it won't be available in v17 either (did not make it to the list).

    I solved that problem by using the guest wifi feature on my AP (I use Ubiquiti) that keeps the the wireless guests on the same subnet / VLAN as the other wifi clients but isolates the rest of the subnet and the non-guest wifi clients. So far all of my attempts do do anything with more than 1 VLAN on a bridged setup have failed.

  • 0 in reply to Michel Py
    Hi That's a shame, I am pretty sure I had this working on the UTM when I used it before moving to XG due to IP limitations. I see there is a article on how to create tagged VLAN on bridged interfaces which could have worked but problem with that too is I need the Sophos to be my Layer 3 gateway and DHCP server too. I don't think I can create a VLAN without assigning to a physical interface. Bummer about not being in v17 either. I wonder if this would work by using just the cli?
  • 0 in reply to waghelak

    waghelak,

    as Michael wrote, when XG is deployed in bridge mode, many features are still missing. VPN is missing too and other features:

    https://community.sophos.com/products/xg-firewall/f/network-and-routing/76233/bridge-mode-limitations

    I really hope v17 can bring a "fresh air of features" because at the moment XG in some installation cannot be even proposed.

    Regards

  • 0 in reply to lferrara
    Surely this can't be acceptable? Are we possibly looking at v18 for this feature or will it be in some maintenance release once v17 is out? If v18 than this will go onto 2018 possibly 2019? Well I guess we will have to change plans and placed orders at work and instead go with UTMs and not XGs.
  • 0 in reply to waghelak

    waghelak,

    v18 will be released in 2018 but no one knows at the moment when bridge features will be improved. It should ASAP! v17 should improve and include some bridge improvements already. v18 is to far away!

Reply Children
  • 0 in reply to lferrara

    Sorry to revive an old thread, but I need the exact same thing.  I am working around it by running the commands to create the bridge from the command line.

     

    Is there a safe place to run raw `ip` and `brctl` commands that will get put into the config so when it is saved, the commands will also be saved?

     

    TIA,

     

    Greg