Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    New 7100 setup

    Scheduled Pinned Locked Moved Official Netgate® Hardware
    vlaninstall
    4 Posts 3 Posters 976 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • AndyRHA
      AndyRH
      last edited by

      I bought a 7100 and I want to use the SFP+ port for the WAN, but I am unable to get it to work. When the WAN is on eth1, it works as expected, when I move the WAN to ix1 it fails to pickup a DHCP address from my ATT router. I have also tried igb3 with the same result.
      I moved the WAN by changing the parent interface for the default WAN VLAN.

      The goal is to have VLAN1 be the DMZ between the ATT router and pfSense. Allowing me to add systems to the DMZ, bypassing pfSense.
      All other systems will be on VLANs 2,3,4 (everything, IoT, test/untrusted)

      This is all working with my seasoned Lenovo desktop, but I wanted to stop using 10 year old HW for a FW. The old FW does not have any VLANs defined. Simple connections to the L2 switch. At this time I have moved the old FW out of VLAN1 due to an oops that made the family mad. 😊

      pfSense is the latest version, 21.05.1-RELEASE
      I have not added any rules beyond those needed for other VLANs to access the internet.

      HomeNetwork.jpg

      o||||o
      7100-1u

      B 1 Reply Last reply Reply Quote 0
      • B
        brians @AndyRH
        last edited by

        @andyrh

        What are you using to plug in the ix0 interface to? Maybe there is incompatibility with SFP modules.

        Did you try instructions here under dedicated LAN switch section?

        https://docs.netgate.com/pfsense/en/latest/solutions/xg-7100/configuring-the-switch-ports.html

        eth1 is setup special to be a WAN. To use eth3 instead you would have to reconfigure the VLAN settings on the switch. That page shows how to do it all.

        1 Reply Last reply Reply Quote 0
        • AndyRHA
          AndyRH
          last edited by

          It appears that the ATT gateway will not give an address to a VLAN tagged interface. I moved the WAN to the interface untagged and it worked.
          Good question, I am using Aruba branded SFPs and a 10Gb twinax cable, both work without errors.

          o||||o
          7100-1u

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by stephenw10

            @andyrh said in New 7100 setup:

            I moved the WAN by changing the parent interface for the default WAN VLAN.

            The VLAN on WAN, 4090 by default, only applies to the internal switch. So simply moving the VLAN parent to ix0 or igb3 would only work if VLAN 4090 is defined correctly on the external switch they are connected to.
            If that's not the case the new WAN interface would be directly ix0 or igb3 without a VLAN.

            Steve

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.