Software bridge on ProxySG running on SSP hardware is not working
search cancel

Software bridge on ProxySG running on SSP hardware is not working

book

Article ID: 267968

calendar_today

Updated On:

Products

SSP-S210 PLATFORM SSP-S410 SSP-S410 PLATFORM ProxySG Software - SGOS

Issue/Introduction

Software bridge on ProxySG running on SSP-210 hardware is not working.

This has caused L2 Transparent Bridging to fail as packets are leaving the default gateway interface instead of the bridge interface.

Resolution

Bridge on ProxySG hosted on SSP device needs to be configured in ISG/SSP (hypervisor) side following tech doc below. 

There is no need for any bridging configuration done in the ProxySG as ProxySG would boot up with the bridge already configured on the ISG/SSP side.

L2 Transparent Bridging is only supported on the following versions (see ISG release notes). 

ISG - 2.4.3.1 or later

SGOS - 7.3.8.2 or later

Below are some high level configuration steps:

1. Stop ProxySG application.

2. Enable bridge (set fail-open/fail-closed)

3. Add interfaces to bridge 

4. Add bridge to network definition (do also add 0:0/mgmt interface for mgmt access)

5. Assign network definition to ProxySG

6. Start ProxySG application 

Note: You should see the bridge already configured (in ProxySG UI - Configuration - Network - Bridges - edit) after booting up. 

https://techdocs.broadcom.com/us/en/symantec-security-software/web-and-network-security/integrated-secure-gateway/2-4/About-ISG/manage-bridges.html

 

 

Powered by Wolken Software