Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    XG-7100 VLAN Uplink to Unifi Switch

    Official Netgate® Hardware
    2
    7
    743
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      SteveNxn
      last edited by

      Another question I'm afraid. With the XG-7100 I read that the ETH ports don't support STP. I'm looking to set ETH 1-4 as VLAN 4091, ETH 5-8 as VLAN 4092. Then Connect an uplink from port ETH 1 and ETH 5 to a single Unifi 24 port Switch, where that will also be split into 2 * VLANs. The idea is to have two completely separate LAN's with 12 ports each on the Unifi switch.

      I can't figure out if this is going to cause STP to block one of the uplink ports. Is it better to use the second ix1 SFP to uplink to the Unifi switch as a trunk, and have the VLANs tagged on the Unifi switch?

      I am using ix0 for WAN. I also have a 4 port and 2 SFP+ NIC that I could place in the XG-7100 if that would make my life easier.

      Very much appreciate the help from this forum.

      stephenw10S 1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator @SteveNxn
        last edited by

        If they are on separate VLANs, no layer 2 link between them, that should be fine.

        With that sort of setup you have other options available though.

        You could for example remove the internal lagg in the XG-7100 and configure the internal ports, ix2 and ix3, separately.
        Change the switch to port VLAN mode and you can configure it as two separate 5 port switches each with one port to an internal interface. Now you have no connection at all between the port groups and no chance of a loop.
        You can also then assign VLANs to the internal interface and they will passed out.

        Each side would be linked at 2.5G so you lose the load-balance lagg that give 5G but that's not normally any sort of limit you might hit.

        Steve

        S 1 Reply Last reply Reply Quote 0
        • S
          SteveNxn @stephenw10
          last edited by

          @stephenw10 thank you, that does sound like it would be a better option. I will have a play before it goes into prod.

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by

            What do you intend to have connected where? I assume you need some ports available on the XG-7100 to connect to directly?

            S 1 Reply Last reply Reply Quote 0
            • S
              SteveNxn @stephenw10
              last edited by

              @stephenw10 yeah, I might leave a couple of the switch ports for management lan, but the intention is to have everything in the rack on the unifi switch with 2 isolated LANs, sharing the same WAN (one lan has a different public IP to the other). The ISP provided a /29 to allow that.

              1 Reply Last reply Reply Quote 0
              • stephenw10S
                stephenw10 Netgate Administrator
                last edited by

                Probably more flexible to keep the standard lagg/vlan setup internally then. You can easily move ports between the VLANs on the switch if you need them etc.

                Steve

                S 1 Reply Last reply Reply Quote 0
                • S
                  SteveNxn @stephenw10
                  last edited by

                  @stephenw10 ok great, I'll have a play as I have a unifi switch here to play with too, I've just got the wan link sorted so now onto playing with the LANs.

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.