- Port 5 - Untagged (VID 1) -> Firewall LAN interface
- Port 6 to 8 - untagged (VID 1) -> LAN
My FW is a Netgate 1100 and the 3 interfaces are actually a switch with different VLANs (all Untagged).
As a result, I only have a single network interface that is shared between the three ports.
The same MAC address is therefore found on all 3 ports of the switch (2, 4 and 5).
The switch obviously doesn't like this, it thinks there's a loop and gives me this error and blocks the interfaces:
PORT-4-ERR_DISABLE rsd_port.c(950) %% loopback-detection error detected on GigabitEthernet4, putting GigabitEthernet4 in err-disable state PORT-4-ERR_DISABLE rsd_port.c(950) %% loopback-detection error detected on GigabitEthernet2, putting GigabitEthernet2 in err-disable state
In reality, there are no loopback as we are on differents VLANs.
My previous switch (the gs108t) didn't have this problem.
I can't find the parameter to be changed on the gs108tv3 so that it doesn't block ports.
Do you have any ideas?
Thank you.
PS: I've already tried to fake different MAC addresses on the firewall but that's not possible as there is only one physical interface 😞
The Loop Protection is (like STP or RSTP!) independent of the VLANs. Fact is that these ports can "see" and reach the other ports in a L2 transparent way. The Loop Protection does send out a certain frame type, and does monitor if the same frames are received on other ports. A kind of poor-men's STP 8-)
