I am attempting to setup XG in L2 bridge mode on a multi tagged VLAN LAG link between switch infrastructure and the main routing firewall equipment (The trunk from the switches to the main routing firewall). It is only for trying Sophos XG security features like: Synchronized Security, Sandbox, AntiMalware, Web Filter, Application Filter, HTTPS Inspection. It is no real production environment. How do I properly create this L2 bridge? I am not sure about zones and tagged VLAN Sophos interfaces assignment. And correct firewall rule for DHCP request pass the SOPHOS XG L2 bridge. In the end, I will only test security functions on one of the VLANs. Other VLANs should not be affected. IP addresses are assigned from the original main routing firewall, which host DHCP server for all my VLANs.
I'm not successful yet...
Thank you for your help.
it looks like I can setup bridge (with multiple tagged VLANs), but only IPv4 PING, DNS and DHCP traffic can pass. I didn't succeed with normal web traffic. I get connection error. Even if I create an ANY-ANY-ALLOW-ANY firewall rule to let everything pass. My XG is deployed in mixed mode (routing + L2 bridge +TAP/Discover mode).
Thank you for the feedback.
I am sending you PM to get more information.
I have some issue with reading private messages from you. In my message inbox view (in the top-right corner) on this forum I have only one welcome message and nothing more.
Can you do double check PM recipient, please? I have PM allowed from everyone. I had the same problem with another post.
Hi Radovan Jenčík
I have just sent a PM to test the same.Please check and revert.
Hi Radovan Jenčík
I have received your message in PM . Please share your personal email over there so we can start communication over mail.