Just set up my pfsense box last weekend using your guide, now I’ll be following this guide too! Thank you!!!

You are like a mind reader. I was learning in depth about LACP last night. I love your videos. Thank you for the great work. Cheers from Canada!

As always well done! Good job Tom

These tutorials are really great! Sincesrly, thank you Tom, and to the rest of your crew!

@LAWRENCESYSTEMS

3 жыл бұрын

You're very welcome!

I just watched your TrueNas Core LAGG video and this video seems to have more correct information concerning LACP with its different modes of LACP especially the 802.3ad mode.

Great video. I have two lag setups between two UAP HDs and 24 port 250W Poe switch and lag between switch and Netgate Sg-3100. One note is that you have to setup lag downstream device before upstream lag or the connection breaks.

The hero I needed! Setting up a VPN device for about 50 users on one of those i3 4 port fanless 4 port machines. Now - I don't NEED link agregation, but it helps!

Such a neat video! Thanks for the quality content 👍

@LAWRENCESYSTEMS

3 жыл бұрын

Glad you enjoyed it!

Great content, Love It, Thank you !!

You are a blessing.

As always, great video tutorial! I watched a few of your clips before and I was wondering that I haven't subscribed yet...But I did this time ;)

I havent tested with pfSense specifically, but if you only have 2 available port and your connected via the LAN, you can create a LAGG using the single available port, then swap your PC to the LAGG, then delete the LAN, then add the free LAN port to the LAGG. this way you dont lose connection while making the switch, and dont need to connect to the WAN port. This worked on old FreeNAS Corral, so I assume it will work with pfSense

Excellent!

A good demo is using iperf with multiple connections (threads), they typically add up to the full bandwith - but only if the hashing is on the correct protocol level (tunnels and vlan require a different hashing on deeper levels besides the normal level 2 ip+port)

@LAWRENCESYSTEMS

3 жыл бұрын

Yup

@SchoolforHackers

3 жыл бұрын

Because of the vlan tagging?

@berndeckenfels

3 жыл бұрын

School for Hackers actually I am not sure about the vlan, i might be wrong there. At least I had problems with the xmit hash policy (layer3+4) not working for gre tunneled links (it was not distributing the tcp connections inside the tunnels). Might be not a problem for normal VLANs, maybe for Vxlan tunnels. For the typical NAS I guess distributing the layer3 clients is more than enough load balancing.

@SchoolforHackers

3 жыл бұрын

Yeah it gets a mile deep here, doesn’t it?

I've definitely seen switchPORT failures, which is why I always try to make use of a LAG, when possible.

Ben using an HP Procurve 24 port switch and have 0 problems running it with a 4 channel LAGG LACP setup. Did some testing using a proxmox with lacp setup, and ISCSI drive with FreeNAS. Ran a virtual machine on that ISCSI drive and linux drive speed test was able to read close to 7gb/s write 3.5gb/s. I just slapped it all together and freenas had 8 ssd drives in raid 0. There was no production running on it. I love my procurve switch, but it took me a couple days to figure out how to get it setup as there are no options in the web interface it had to be configured via putty and console cables.

Thanks for the video. It demonstrates that LAGG is not that complicated to set up. It is just a shame that pfSense does not allow the creation of a LAGG interface in the console. That would have help me many times when doing the initial install a new pfSense box.

@scottluebke5012

2 жыл бұрын

It's easy to set up because he's using a Unifi switch, and Unifi switch configuration is SO easy. Doing LAGG on most switches is not easy.

@psycl0ptic

8 ай бұрын

@@scottluebke5012 hmmm...it's easy on others. unifi is confusing for vlans and lagg since they do things non standard. eg LACP on HPE Aruba and Dell OS 10 switches is easy.

@tinohappyface

4 ай бұрын

​@@psycl0pticfacts. My switch freaked out and wanted to be adopted.. I lost all DNS.. it was scary.. just went back and gonna think this over.

Thanks for the video! I have a issue that popped up as of lagging 2 connections. I can no longer access any of my haProxy sites on LAN (sometimes they start working but when they do it takes approx 5 mins for the page to come up and sometimes it just timesout); i can only access them from the WAN. I have been going through your videos trying to find a fix. Before the lagg config. I also notice when i restart my unifi switch port for the lag - the sites will work fine via LAN as well BUT only for a few mins.

That only thing that I really wish Untangle had was the ability to create a LAGG for the switch uplink. I should set up a pfSense box sometime just to play with it.

What I've found with cable failures is 99.9% of the time a person is nearby when the cable 'fails', they then walk away and come back to deal with the 'failed' cable. i.e. People cause most cable 'failures'. Now if you use cheaper then cheap cables and gear YMMV. Cheap is not always about what it costs.

do you have something like this for lacp trunk link pfsense to a dell powerconnect 5448

We need a way for you to make "choose your own adventure" versions of the videos. I needed this exact information last night...but for an SG-3100, not a 5100. I'm starting to suspect that LAGG is not supported for the built-in switch ports on the 3100 (LAN1..LAN4), only actual interfaces (LAN, OPT1, WAN). Can anyone confirm?

So what is also effectively create a bridge for those two ports I'm assuming centering they both have one IP address and are on the same subnet of course?

Found this video after playing with this earlier today. Got everything configured this morning and everything was great for about an hour then everything lost connectivity. The only way to get back up was to login to pfSense locally and restore a backup.

@homeassistantiptv8068

3 жыл бұрын

Did you ever find a fix for this?

@MatthewMcNair

3 жыл бұрын

@@homeassistantiptv8068 I did get it working. After I restored my previous configuration I set it back up and it worked without any issue the second go round. It's been running without issue for 3 months now. I think the issue I was having may have been with the ports I had originally chosen on my switch to setup the LAGG.

@homeassistantiptv8068

3 жыл бұрын

@@MatthewMcNair Thanks, i got mine up and running as well! I had done it as per the video but then what i did was delete the lagg setup on PF and re-did it and as soon as i hit Save - that did the trick. So almost the same as you where it took it the 2nd time.

Hey, love your videos. I have a question if I may, is multi-WAN the same as WAN aggregation? I have a Motorola MB8600 and a multi gig subscription and would like to use WAN aggregation to achieve the higher throughput from my modem to my soon to be built pfsense box and then out of that to a multi gig switch. But I cant find a definitive answer to is WAN aggregation the same as multi-WAN.

@LAWRENCESYSTEMS

11 ай бұрын

Not the same more details here: kzread.info/dash/bejne/i56cp8yQo5u_qqg.html

@AnthonyCelata

11 ай бұрын

@@LAWRENCESYSTEMS Thank you! I'm sitting here trying to figure it out. thanks!

Hmm... I really want that Cat6 reinforced cable, but they're totally out of stock on the affiliate link :/ I found the them on the monoprice site though.

wondering if I could split my Fiber 3go internet to two 1go ports on my pfsense to leverage that internet speed to all the house (2 swicthes, 3 WIFI routers, IPcam)...(I wish my pfsense box had 2.5 of 10 go ports but it don't) Advises, opinions welcomed.

I have no Parental Interfaces listed in the box when trying to setup a LAG so I cannot select my OPT1 and OPT2 interfaces. What do I need to do to get the Parental Interfaces listed?

< all about the fibre bonds

@LAWRENCESYSTEMS

3 жыл бұрын

It's good to have plenty of fiber in your diet. :)

Tom, I have some open ports on my pfSense. Switch is a 24port Unifi. Is it possible to configure LACP on pfSense and on Unifi and then move the vLan's onto the newly created trunk pair. with a matching setup on the unified side ? like to trunk 2 x 1GbE ports on both sides.

@LAWRENCESYSTEMS

10 ай бұрын

Yes

@georgelza

10 ай бұрын

@@LAWRENCESYSTEMS found your video from last year... just now need to develop "bravery" to action on my setup.

Can this only work with a switch or can we aggregate pFsense with a NAS that supports LACP (e.g. Synology)?

@LAWRENCESYSTEMS

Жыл бұрын

Probably but I don't recommend routing storage.

Where did you get those short cables? The shortest I've been able to find commercially is 0.5 ft. It appears to me those cables are shorter.

@LAWRENCESYSTEMS

2 жыл бұрын

Those are .5 kit.co/lawrencesystems/homelab-rack-build/monoprice-cat6-ether

Interesting. I've tried almost this exact thing a couple of times in the past in my home lab with several different switches, with and without lacp, but without much luck. Each time things worked well for an hour or two, I saw the improved throughput (from multiple clients) and redundancy, but after that my network always started to get unstable. Random dropped pings, even between machines on unaffected switches, pairs of hosts that couldn't communicate (but could communicate with other hosts), DHCP failures, lots of entries in the ARP caches, etc. In each case, removing the lagg returned everything to normal almost instantly. Still haven't figured out what I was doing wrong.

@homeassistantiptv8068

3 жыл бұрын

have you figured or discovered anything with this issue? I am having the same issue

@andyrandy0815

Жыл бұрын

Have you activated LACP or used Link Aggregation without LACP (which is not as stable in case of misconfiguration)

Nice tutorial, the only thing absent was some practical use cases, you mentioned but not showing some.

@LAWRENCESYSTEMS

3 жыл бұрын

Got to save something for the next videos ;)

@FinderX

3 жыл бұрын

@@LAWRENCESYSTEMS Oh, great! well, time to wait then the next one.

I don’t understand how to bring em1 (LAN) to em3 and create LAG with em1+2. just get kicked out of web GUI

I assume this could get a little dicey in an ipv6 world no? Or maybe some additional configuration steps would be needed. I assume reports would share the same link local and global addresses eh?

Where do you got that very thin ethernet cable?

@LAWRENCESYSTEMS

3 жыл бұрын

kzread.info/dash/bejne/nmqlrZKuf67SdpM.html

I HATE that the console port on the XG6 switch is right next to port 1. I know it's a small device and not a lot of options as to where to put it, but dang Ubiquiti, move it more over to the edge or something.

@LAWRENCESYSTEMS

3 жыл бұрын

Yeah, accidentally sticking in the wrong whole is annoying.

What benefits is there for gaming with this? better latency? or just fail over?

@LAWRENCESYSTEMS

3 жыл бұрын

Just failover.

Is there any way to convert an existing vlan setup to vlans over a lagg interface without losing any of the rules I already have set?

@viaujoc

3 жыл бұрын

Yes. Create your LAGG interface and add the VLANs to it. This will create new Network ports such as "VLAN 99 on lagg0". Then just change the port on the interface that you want to migrate from a single link to a LAGG from "VLAN 99 on ix0" (replace ix0 with your port name) to "VLAN 99 on lagg0". Since you did not change the interface (LAN, OPT1, etc.) itself but just its binding, all the rules will remain intact.

This only provides redundancy on cabling, what about a config for pfsense with multiple switches which themselves are linked via MLAG?

@LAWRENCESYSTEMS

3 жыл бұрын

yes, for better redundancy use multiple switches.

@mikejakubik

3 жыл бұрын

@@LAWRENCESYSTEMS I'm just hoping carp will run on a LACP interface (im planning on using two Netgate devices in HA mode), from what the pfsense guys tell me it should be doable.

How can I access gui via Lag Interface IP ?

Would you assign 3 VLANs to 3 single interfaces or create a LAGG and assign all 3 VLANs to this one?

@LAWRENCESYSTEMS

2 жыл бұрын

it depends on your use case.

I really don't understand why would anyone lagg to a router. Sure, betwene switches? Absolutely. From a switch to a storage or app server? Certainly. I did exactly that. But from a router to a switch? Usually link beyond the router has the least bandwidth avaliable to the network, so it would seem useless for most applications... Given that VRRP would serve as better solution (because you also plan for HW failiure).

@EyeOfMaat

3 жыл бұрын

In my case, my switch is rather basic so traffic between VLAN's goes to pfSense then back out to the other VLAN. If there is alot of traffic going across different VLAn, it will help. LAGG could allow my PC to connect to my NAS at 1gbps whilst allowing other traffic to flow smoothly. In my case i use a seperate port/cable/VLAN for iSCSI traffic, but a LAGG could achieve a similar result.

No, I wouldn't like to hire you Tom but I would like to see you produce videos on OPNsense and IPV6. Interesting that you don't, isn't it?

@LAWRENCESYSTEMS

4 ай бұрын

Use what makes you happy, but since OPNSense is slow on security updates compared pfsense lawrence.video/opnsense it's not really something I am interested in.

I need to learn how to do this with an old cisco 3750 switch

@DementiaAcerbus

3 жыл бұрын

It's not too bad at all. Lots of videos about it on youtube too. Doing it with a 2960G and my pfsense box now. Basically in Cisco you would just create an etherchannel bond with LACP as active and connect it over. (make sure to only do it in powers of 2 though, so like 2 ports, 4 ports, 8 ports, etc). Cisco's algorithm with LACP doesn't get along with other configurations of number of ports.

@katdaddychap

3 жыл бұрын

@@DementiaAcerbus Thanks, good to know. I have 2 cisco 24port SW stacked. I plan on creating the etherchannel on the SPF ports on SW1 and SW2. I need to config them as trunk also. The change the config on the UDM-pro as well. I'm a noob to all of this and not an IT person by no means.

Hi. I installed pfSense VM on ESXi. Can i do that on it?

@LAWRENCESYSTEMS

3 жыл бұрын

I never tried

How about WAN?

DNS stopped working.. any idea?

This comes out the same day as I realize the udm pro does not do lagg... :'(

@_Steven_S

3 жыл бұрын

Neither does the ER-4. No switch-chip, no LAG.

Dude! That's hilarious - your position as a videographer, does rather make things difficult for you, as you're continually facing away from the ports & their labels!

@LAWRENCESYSTEMS

3 жыл бұрын

Yup, it can be a challenge.

great thans 4 U from Russia! I want 2 hawe 1 DHCP for 3 physical interfaces (virtual switch). is this metod acceptable for it?

@LAWRENCESYSTEMS

2 жыл бұрын

DHCP works with LACP & LAGG

@vyacheslavaleshin8137

2 жыл бұрын

@@LAWRENCESYSTEMS works fine! thanks alot twice!)

At first it looked like you had a green Mohawk.

@LAWRENCESYSTEMS

3 жыл бұрын

Not really my style, but I might be wrong about that.

@SchoolforHackers

3 жыл бұрын

It would be totally natural on you. That’s a compliment. ;)

I clicked on this video thinking I would hear about how pfSense lags. lol

Second lool!

first lol

@gh8447

3 жыл бұрын

Dammit, beat me by three minutes!

laggy interface lol

@rommeljjimenez

3 жыл бұрын

Hello Tom. Could you please put an Amazon link for the patch cords that you are using ?

@davidg4512

3 жыл бұрын

@@rommeljjimenez You replied to me accidently. I think I can help you though. www.amazon.com/Monoprice-SlimRun-Cat6A-Ethernet-Patch/dp/B01BGV2C7U

@rommeljjimenez

3 жыл бұрын

@@davidg4512 Thank you!!!