Networking: VLAN and LAN on the same Interface
It is useful to have LAN(default) and VLAN on the same Interface, so you can have one uplink from your switch, at this time you need 2 cables to connect your switch.
I’m pleased to announce that support for this feature was added in Sophos UTM 9.300
Peter Sturm commented
This feature is already implemented in version 9.3
Seriously???? What in the world are you guys at sophos thinking??? This is a NETWORKING appliance. It can't even handle a default tagged/untagged vlan? Please, let's just start with the basics and then try the advanced stuff.
Marcus Hock commented
Hi, isn't this what is the common us of a native VLAN? In respect of 802.1q, every VLAN-Trunk should be able to deal with one native (untagged) VLAN. I am really curious why sophos does not implement the correct standard?!
In my optionion, the thinking of this is to different between extern and internal traffic. Over this way, users are coerced to difference beween internal and external traffic.
Jay Stoeber commented
I agree, and the reasons that I can think of would be multiples.
1. Those of us using the appliances, cannot add NICs for additional subnets, and this this would be essential to say, segregate VoIP or SAN traffic as but one example;
2. Those of us who do use a regular server(s) for our ASG, still run into physical capacity issues (lack of PCI slots) in addition to being limited to basically 4 ports per internal PCI network multiport adapters - not that larger ones are not available, but their cost gets exponential as the # increases per adapter);
3. Many of us do not have multiple routers on our network, and in our case, only ASG is our LAN router as it were, and throwing money into a routing switch or another router on small LANs is just not a good idea, much less affordable. So, VLANs are the typical answer to achieve a new network, without too much complexity - our router (ASG) just needs a simpler way to do this for us, and this ability would likely be the answer;