Help: what name to which network port?



  • We have just purchased a Netgate XG-7100 1U. Besides IX0 and IX1 which we don't use, there are 8 network ports from ETH1 to Eth8 in XG-7100 1U.
    When I install pfsense, pfSense can find:

    WAN (wan) -> lagg0.4090 ->
    LAN (lan) -> lagg0.4091 -> v4: 10.0.1.254/24
    OPT1 (opt1) -> ix0 ->
    OPT2 (opt2) -> ix1 ->

    The output of ifconfig is:
    [2.4.4-RELEASE][root@gw.millenniuminsurance.ca]/root: ifconfig | more
    ix0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
    options=e400bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6>
    ether 00:08:a2:0e:d6:61
    hwaddr 00:08:a2:0e:d6:61
    inet6 fe80::208:a2ff:fe0e:d661%ix0 prefixlen 64 scopeid 0x1
    nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
    media: Ethernet autoselect
    status: no carrier
    ix1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
    options=e400bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6>
    ether 00:08:a2:0e:d6:62
    hwaddr 00:08:a2:0e:d6:62
    inet6 fe80::208:a2ff:fe0e:d662%ix1 prefixlen 64 scopeid 0x2
    nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
    media: Ethernet autoselect
    status: no carrier
    ix2: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
    options=e500bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6>
    ether 00:08:a2:0e:d6:63
    hwaddr 00:08:a2:0e:d6:63
    nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
    media: Ethernet autoselect (2500Base-KX <full-duplex,rxpause,txpause>)
    status: active
    ix3: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
    options=e500bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6>
    ether 00:08:a2:0e:d6:63
    hwaddr 00:08:a2:0e:d6:64
    nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
    media: Ethernet autoselect (2500Base-KX <full-duplex,rxpause,txpause>)
    status: active
    enc0: flags=0<> metric 0 mtu 1536
    nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
    groups: enc
    lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
    options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
    inet6 ::1 prefixlen 128
    inet6 fe80::1%lo0 prefixlen 64 scopeid 0x10
    inet 127.0.0.1 netmask 0xff000000
    nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
    groups: lo
    pflog0: flags=100<PROMISC> metric 0 mtu 33160
    groups: pflog
    pfsync0: flags=0<> metric 0 mtu 1500
    groups: pfsync
    syncpeer: 224.0.0.240 maxupd: 128 defer: on
    syncok: 1
    lagg0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
    options=e500bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6>
    ether 00:08:a2:0e:d6:63
    inet6 fe80::208:a2ff:fe0e:d663%lagg0 prefixlen 64 scopeid 0x13
    nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
    media: Ethernet autoselect
    status: active
    groups: lagg
    laggproto loadbalance lagghash l2,l3,l4
    laggport: ix2 flags=4<ACTIVE>
    laggport: ix3 flags=4<ACTIVE>
    lagg0.4090: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
    options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
    ether 00:08:a2:0e:d6:63
    inet6 fe80::208:a2ff:fe0e:d663%lagg0.4090 prefixlen 64 scopeid 0x14
    nd6 options=23<PERFORMNUD,ACCEPT_RTADV,AUTO_LINKLOCAL>
    media: Ethernet autoselect
    status: active
    vlan: 4090 vlanpcp: 0 parent interface: lagg0
    groups: vlan
    lagg0.4091: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
    options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
    ether 00:08:a2:0e:d6:63
    inet6 fe80::208:a2ff:fe0e:d663%lagg0.4091 prefixlen 64 scopeid 0x15
    inet 10.0.1.254 netmask 0xffffff00 broadcast 10.0.1.255
    nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
    media: Ethernet autoselect
    status: active
    vlan: 4091 vlanpcp: 0 parent interface: lagg0
    groups: vlan

    My question is: How can I know which ports (ix0, ix1, lagg0.4090, etc) in pfSense are corresponding to which ports in XG-7100 (Eth1, eth2 , etc)?
    How can I find devices in pfSense that are corresponding to ETH1 to ETH8 in XG-7100?

    This is urgent. Thanks for response.



  • Does it help any if you go to Status -> Interfaces?

    On my SG-8860 1U, it's all presented pretty straight forward. This particular box doesn't have the switch ports your box does, however. I've only got 6 physical ports, but it calls them all out there, just like they're printed on the outside of the case. Even my single VLAN I'm using, on top of the physical LAN interface, is labeled correctly - igb0.8

    Jeff



  • @akuma1x. No help.
    what are switch ports? do I have to use ix0 and ix1?



  • The switch ports on the 7100 are ETH1 - ETH8, see the picture here:

    https://docs.netgate.com/pfsense/en/latest/solutions/_images/xg-7100-1u-io-ports.png

    You don't have to use IX0 or IX1, unless you've got other SFP connectors on some of your other switches or internet modems. You could technically set any of the ethernet ports (ETH1-ETH8) as your WAN or LAN ports and not use the IX SFP ports.

    Here's all the I/O ports, with explanations, for the 7100:

    https://docs.netgate.com/pfsense/en/latest/solutions/xg-7100-1u/io-ports.html

    Jeff



  • @akuma1x Thank you very much. I'm reading these docs. It seems that Eth1 is wan, Eth2-Eth8 is Lan. We need set VLAN for making it work.




  • Netgate Administrator

    Yes, you need to configure a new VLAN internally and set the switch to use it to separate out another port.

    If this is a new install and you would rather just have all 8 ports separate you can use this default config file to do that before you start.

    7100-8-port-config.xml

    Restore it via Diag > Backup & Restore. It will reset any existing settings though.

    Steve



  • Thank Steve.
    Then How can I import configuration from my SG-6840 to this XG-7100. I have tried backup from SG-6840 then restore into XG-7100, It doesn't work.
    What changes I have to make for configuration from 6840 to 7100 before restoration?



  • I have tried to back up configuration from old machine then to restore them to this new XG-7100. I have done it service by service. The version in old machine is 2.4.4-RELEASE-p1, new machine is 2.4.4-RELEASE-p2.

    All users/group data cannot be restored which is in "System" backup. OpenVPN may have problem.

    Is there a way to migrate configuration from old machine to new machine? Please help.


  • Netgate Administrator

    We can help you with that directly in support. Please open a ticket with us at https://go.netgate.com.

    Steve



  • Sorry. configuration migration seems work including user list. I'm checking to make sure it works.


  • Netgate Administrator

    Ok great. If you still have issues we can help with config importing though.

    Steve



  • Thank Steve.


Log in to reply