Good afternoon Sophos Wizards,
We're about to start the implementation of our SG330 into our current topology and we're unable to get through one obstacle. This obstacle is, that we don't know how to configure inter-vlan routing on more than one interface (for sake of redundancy) .
The problem is following: We're able to configure router-on-a-stick approach (http://www.networkstraining.com/images/router-on-a-stick.jpg) with one interface. But if you take a look on the picture in the attachment, you see, that we'd prefer to make a inter-vlan routing on two interfaces. All the links (excluding the links from access switches to computers) are trunk in this picture. I'd really appreciate some hints regarding this topic.
Although I lack the experience with sophos configuration, I thought of config, where eth2 and eth3 are bridged, interface br0 is created and virtual VLAN interfaces are then assigned to br0 interface. Please take a look on second picture in attachment, where such config is depicted. On the other hand, I'm unable to figure out, how the STP protocol would behave [:S], because all the links seem to me like a huge broadcast domain (regardless of the fact, that each VLAN is broadcast domain on its own). I assume, that either of the links eth2 or eth3 would be blocked in order to break physical loop and avoid broadcast storms.
Our current redundant inter-vlan routing is achieved with two Cisco 4500 series L3 switches. Since these L3 switches are able to restrict traffic up to 4th layer, we're thinking of configuration on inter-vlan routing on SOPHOS UTM.
Thank you in advance for any valuable advices, best regards,
SZ
This thread was automatically locked due to age.
