In this article, I’ll explain how to declare a vlan on your Sophos XG firewall. Before you create it on the firewall, you must make sure that the port of the switch where the firewall is connected is tagged.
Go to the firewall administration web interface, in the left menu click NETWORK 1 . The page opens on the Interface 2 tab. Click the Add Interface 3 button and Add VLAN 4 .
The VLAN configuration page is displayed, select the physical port of the firewall 1 then the area 2 , enter the VLAN ID 3 and configure its IP addressing 4> > and click on the button Save 5 .
The VLAN is added to the firewall.
Even if the VLAN is added in LAN area, it is necessary to put a rule that will allow the traffic. If you do not want any particular filtering between LAN zones, I advise you to set up a LAN TO LAN ZONE rule as below.