Hi,
I'm in the process of setting up a basic trunk link for multiple VLANs between a Sophos XGS 136 device and a basic HP 2920 layer 2 switch. The end result is to configure VLAN access ports on the HP layer 2 switch.
I haven't had a lot of experience in setting up firewalls and switches so I admit I may not have the concepts correctly in place.
Do I do the following:
- Configure the VLANs on the Sophos appliance (with unique VLAN ID)s and bind them to a free physical port/interface ?
- For each VLAN I have the option of creating a DHCP server and a corresponding firewall rule on the VLAN interface ?
- Patch the connection from the physical interface (where the VLANs are defined) to a destination port on the switch. Configure the destination port on the switch as a "trunk" link
E.g.
VLAN 10 is defined to have the range 192.168.10.0/24 with VLAN ID 10
VLAN 20 is defined to have the range 192.168.20.0/24 with VLAN ID 20
VLAN 30 is defined to have the range 192.168.30.0/24 with VLAN ID 30
- If they are all bound to a free physical port (e.g. Port 6) does it matter what the IP address of the physical port is (e.g. 10.10.1.0/24) ?
- If all VLANs have corresponding DHCP services running, which DHCP server takes precedence is one connects a device to the physical port (e.g. Port 6) ?
This thread was automatically locked due to age.
