Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    XG-7100 - Interface assignement

    Official Netgate® Hardware
    2
    4
    558
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      misterto
      last edited by

      Hi team.

      I'm about to buy a XG7100 appliance, that will be in HA with CARP with a virtual appliance.
      My front-end switches are VPC cisco, but RJ45 only, they will carry vlan for WAN and production tagged vlans.

      Question:

      • With XG7100, is it possible to create a LAGG0 with ETH1 & ETH2 and assign this LAGG to WAN (i don't want to use SFP ports) LAGG1 & LAGG2 will be with eth3-4 & eth5-6.
      • I will have a public /29. Is it possible to do a HA with CARP with a virtual appliance. My idea is to create 1vmnic LAGG0, LAGG1 & LAGG2 on Virtual appliance, in order to reflect the config on XG7100. I guess as long as interfaces have the same assignation (LAGG0, LAGG1 & LAGG3) on physical & virtual appliance, this setup should work, right ?

      Thank you for your help.

      Thomas

      S 1 Reply Last reply Reply Quote 0
      • S
        SteveITS Rebel Alliance @misterto
        last edited by

        You can configure the switch ports to use VLANs to isolate them into separate interfaces. I don't know if they would work in a LAGG but I would think so...?

        re: HA, kind of. The state information can only sync if the interface names are the same. LAGGs can get around that or I recently saw this thread on renaming interfaces.

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote 👍 helpful posts!

        M 2 Replies Last reply Reply Quote 0
        • M
          misterto @SteveITS
          last edited by

          @steveits

          Thank you for your answer.
          From what i read so far, XG-1700 is quite tricky to configure different LAGG with tagged vlan to segregate traffic. Indeed, 802.1q is already used for internal swith for XG-7100. I think it will create more trouble.

          MAybe I will turn to SG-5100, but i'm not really confident to put a fanless Appliance in a datacenter.

          Keep digging anyway.

          1 Reply Last reply Reply Quote 0
          • M
            misterto @SteveITS
            last edited by

            @steveits said in XG-7100 - Interface assignement:

            A, kind of. The state

            Well.

            Just FYI, i came back to SG-5100.
            I create a CARP between physical Appliance and virtual appliance hosted in my cluster, it works like a charm.
            Public network is distributed through a VLAN, and i have double BGP attachment on a VPC Cisco core. Public routes are redistributed with i-bgp.

            I can loose a switch core --> prod still working.
            I can loose SG-5100 physical appliance --> Virtual appliance in the cluster is taking relay thanks to carp.

            I love this setup, don't know why buying Fortinet or Stonesoft solution while pfsense is answering to problems....

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.