Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 10 replies
  • Answers 2 answers
  • Subscribers 43 subscribers
  • Views 21692 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to split initial br0 interface into LANs?

Speatech

Hi,

my firewall is setup in route mode. By default, it bridges the LAN port and all spare ports into an interface calls br0. I can not delete this interface since I won't be able to access it anymore.

I am trying to set VLAN on Port1 and it won't allow me as long as it belong to the interface br0. 

According to what I red, creating a VLAN on a bridge will be possible on firmware V18. Not presently possible.

So how can create a separate LAN with port 1?



This thread was automatically locked due to age.
Parents
  • 0

    I've finally succeeded. What I did:

    1. Modify br0 interface to keep only Port3 and up. Click on Save. Process spinning wheel will keeps turning indefinitely. Go next step.
    2. Disconnect the LAN network cable(Your computer) from Port1 and connect it to Port3. Refresh your firewall configuration web page. Port1 should be now available.
    3. Change your DHCP to allow one more interface IP. I am presently connecting to 192.168.1.1 to access the device. So I modify the DHCP to start from 192.168.1.3 so I can use 192.168.1.2 to access the device from Port1.
    4. Once the DHCP is modified, edit Port1. Set the zone as LAN and IPV4 as 192.168.1.1. Click on Save. Reconnect the LAN network cable to Port1. Refresh your firewall configuration web page.
    5. You can now delete the interface br0. Optional : You can modify the Port1 interface IP to 192.168.1.1 and set your DHCP to start from 192.168.1.2
    6. Create a VLAN on Port1 is now possible.

    Note : If you can not access the firewall configuration web page after a refresh : open CMD, type ipconfig /release then ipconfig /renew. Wait 10 seconds and try to refresh the web page again.

     

Reply
  • 0

    I've finally succeeded. What I did:

    1. Modify br0 interface to keep only Port3 and up. Click on Save. Process spinning wheel will keeps turning indefinitely. Go next step.
    2. Disconnect the LAN network cable(Your computer) from Port1 and connect it to Port3. Refresh your firewall configuration web page. Port1 should be now available.
    3. Change your DHCP to allow one more interface IP. I am presently connecting to 192.168.1.1 to access the device. So I modify the DHCP to start from 192.168.1.3 so I can use 192.168.1.2 to access the device from Port1.
    4. Once the DHCP is modified, edit Port1. Set the zone as LAN and IPV4 as 192.168.1.1. Click on Save. Reconnect the LAN network cable to Port1. Refresh your firewall configuration web page.
    5. You can now delete the interface br0. Optional : You can modify the Port1 interface IP to 192.168.1.1 and set your DHCP to start from 192.168.1.2
    6. Create a VLAN on Port1 is now possible.

    Note : If you can not access the firewall configuration web page after a refresh : open CMD, type ipconfig /release then ipconfig /renew. Wait 10 seconds and try to refresh the web page again.

     

Children
No Data
Unfiltered HTML