This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Static LAG (active-backup) on Virtual XG Firewall not failing over automatically

Hi

in a virtual xg firewall i made a LAG (active-backup) between 2 interfaces. The LAG connects to 2 core switches. From the switch connected to the primary lag-member i can ping the LAG-IP. When i disconnect that cable the automatic failover to the backup lag member does not work. From the second switch i can not ping the IP....

Only when i manually change the primary interface to the connection with switch 2 it works. this is not good for an automatic redundant setup... Does this even work with the virtual sophos? (version 18.5.1 build 326)



This thread was automatically locked due to age.
  • FormerMember
    0 FormerMember

    Hi Michel, Thanks for reaching out to Sophos Community.

    Make sure that you've enabled EtherChannel or LAG or equivalent module in the peering switches. I was able to reproduce this scenario within the lab with two different switches.

    If everything seems proper from the configuration standpoint, then take SSH , Navigate to Option 5 > Option 3 Advanced shell and run the command --> tail -f /log/syslog.log | grep -i 'Port\|8021q'. After running the command, Perform the failover as you did before, collect and share the logs.

  • it's a VLT problem on Dell switches.. thanks for the reply anyway