Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 16515 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG VLAN Not working

Mario Muck

Hello,

I have problems with VLAN and Sophos XG.

Internet and everything is working on Port 1 under LAN Zone.

I created a VLAN interface on Port 1 with VLAN ID 3516. but it shows N/A under status.

I'm running a domain controller and some other servers in VLAN 3516 on esxi.

It's not possible for the VLAN 3516 to get internet access or ping the XG or computers in other VLAN. VLAN trunk is set correctly on the switch and on the esxi virtual switch. I had the exact same configuration running with Sophos SG UTM and everything worked fine, i just switched the firewall to XG and VLAN is not working anymore.

I have created a IP network object under  hosts and created firewall rules to allow access between VLAN and also to WAN but it's not working.

Is it possible that the XG doesn't Tag rhe VLAN right? Or is the VLAN interface disabled due to the fact that it displays N/A.

Or do I need to configure something via CLI?

Thanks



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to lferrara

    I used SFOS 16.05.3 MR-3 but updated today to SFOS 16.05.4 MR-4 just to make sure it's not the firmware release.

    What do you mean exactly with checking the zone? Everything seems to be set corect.

    Is there any other option I could have forgot to set?

  • 0 in reply to Mario Muck

    After some testing I found out that only the machines conected to the network via the virtual esxi switch can't access network with my notebook VLAN is working. Is it possible that the XG doesn't "like" the traffic from that? because with the UTM that always worked with same configuration.

  • 0 in reply to Mario Muck

    Mario,

    when you create a VLAN, XG requires to select a zone. Did you set create a new zone or you used an existing one?

    Make sure that the switch port is configured in trunk mode and that the VLAN ID are trunked.

    Also show us the network rule you have created.

    Regards