New XG-7100 owner confused
-
Hi,
I'm quiet used to WatchGuard and feel quiet confused with my new XG-7100.
I read up on the documentation provided here -> https://docs.netgate.com/pfsense/en/latest/solutions/xg-7100/switch-overview.html#switch-laggIf i want to treat every single interface independently, how do i skip the "LAG" part?
Or do i create VLAN and tag the specific port with the LAG-vlan that i create, then disable the ports that i don't want configured at all?Also, is it recommended to keep VLAN 4090 on WAN and VLAN4091 on LAN?
Is not LAN normally untagged as vlan1?Sorry for possibly asking stupid questions..
Thanks,
Fredrik -
I just realized, that i already knew the answer to this quiestion...
I forgot about the physical limitations of using the XG-7100 over building my own firewall.
//Fredrik
-
Configuring Discrete Ports on the XG-7100 is covered here (official Netgate documentation): https://www.youtube.com/watch?v=NgRy14rYhV8
-Rico
-
If you want all 8 ports separately accessible I usually use vlans 4081-4088 just to make things a bit easier. Those are only tagged internally, all traffic leaving the ports would be untagged.
We can give you a default config with that already configured if you open a ticket: https://go.netgate.com/
Steve
-
@stephenw10: I have a great document Configuring-Discrete-Ports-on-XG-7100.pdf (Author Doug).
I really can't remember where I get this from, but I can't find it online (and I don't know if I'm allowed to share it or not ;-)).-Rico
-
Doug from Netgate?
What's shown here?
https://docs.netgate.com/pfsense/en/latest/solutions/xg-7100-1u/configuring-the-switch-ports.html#switch-configuration-examplesSteve
-
Nope it's a whole other document.
-Rico
-
Hmm, yeah I see it. Checking...
-
I think I figured it out.
Using VLAN probably is the best way to do it.
Only thing is that the firewall makes it confusing with the 4090 and 4091.
