Leigh Kalbli
asked on
Sonicwall port shield group with Meraki switch
I have an Sonicwall nsa 3600 with port 12-15 in a port shield group with a couple vlans. The 1gb fiber ports are going to a Meraki ms420 fiber aggregation switch. According to Meraki dashboard, 3 if the 4 ports are discarding stp.
Should the fiber ports on the Meraki be in a link aggregation ? Why is this happening. Have I miss-configured something on the nsa ?
Should the fiber ports on the Meraki be in a link aggregation ? Why is this happening. Have I miss-configured something on the nsa ?
Aaron Tomosky
Yes, you have to enable LACP, otherwise stp will block the other ports to avoid a loop
ASKER
Hello. I am unsure how you enable LACP. I believe its just by "aggregating" from the web ui but the ports say they are running LACP but its been disabled.
Both devices have to be setup for this to work. You may need to be onsite as sometimes the LACP configure step fails when it has active links. If so, unplug all the links you are trying to aggregate during the below setup steps.
first, set it up on the meraki switch
https://documentation.meraki.com/zGeneral_Administration/Tools_and_Troubleshooting/Link_Aggregation_and_Load_Balancing
"In order to configure 2 or more ports (up to 8) to be a port aggregate, simply navigate to Configure > Switch ports and select the target ports, then choose "Aggregate Ports". It is recommended that you do not have the target ports physically connected to anything during this step. "
then setup the sonicwall
https://www.sonicwall.com/en-us/support/knowledge-base/170505988976495
After setting up the port shield: "From the Switching | LinkAggregation page, click on the Add button to select the ports for a Link Aggregation (LAG) bundle, multiple ports maybe added to a LAG bundle one at a time. A SonicWall LAG bundle may have from 2 to 4 ports."
first, set it up on the meraki switch
https://documentation.meraki.com/zGeneral_Administration/Tools_and_Troubleshooting/Link_Aggregation_and_Load_Balancing
"In order to configure 2 or more ports (up to 8) to be a port aggregate, simply navigate to Configure > Switch ports and select the target ports, then choose "Aggregate Ports". It is recommended that you do not have the target ports physically connected to anything during this step. "
then setup the sonicwall
https://www.sonicwall.com/en-us/support/knowledge-base/170505988976495
After setting up the port shield: "From the Switching | LinkAggregation page, click on the Add button to select the ports for a Link Aggregation (LAG) bundle, multiple ports maybe added to a LAG bundle one at a time. A SonicWall LAG bundle may have from 2 to 4 ports."
ASKER
When i go to create my Link Aggregation on the NSA, it does not show my ports as available. I am using an NSA 3600, and ports 12,13,14,15
ASKER
I spoke to SW Support about this and they said not to use port shield but to use the link aggregation option. I did so but i still receive a the same thing.
Perhaps it's a bug with your version? This works with lacp, I've done it with exactly these directions.
ASKER
What version of Sonicwall OS are you on and what model?
It was a few years ago, nsa3600 6.something. I don't have access to it anymore sorry.
ASKER
NP. im using a 3600 as well but current FW from Jan. I have a follow up call scheduled with SW.
My only tip is to remove everything from the ports you are going to lacp. Any special configs and unplug all wires. Lacp won't setup sometimes if those ports are in use, this isn't SW specific, it's an issue with all vendors
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Settled on 2 port aggregates. SW didnt have an ansewer.