Switching > Link Aggregation

Link Aggregation allows port redundancy and load balancing in Layer 2 networks. Load balancing is controlled by the hardware, based on source and destination MAC address pairs. The Switching > Link Aggregation page provides information and statistics, and allows configuration of interfaces for aggregation.

Static Link Aggregation is supported. Ports that are in the same VLAN (same PortShield Group) or are VLAN trunk ports are eligible for link aggregation. Up to four ports can be aggregated in a logical group, and there can be four Logical Links (LAGs) configured.


	NOTE: Dynamic Link Aggregation protocol LACP (IEEE 802.1AX) is not supported.

Two main types of usage are enabled by this feature:

•

Firewall to Server – This is implemented by enabling Link Aggregation on ports within the same VLAN (same PortShield Group). This configuration allows port redundancy, but does not support load balancing in the appliance-to-Server direction due to a hardware limitation on the appliance.

•

Firewall to Switch – This is allowed by enabling Link Aggregation on VLAN trunk ports. Load balancing is automatically performed by the hardware. the appliance supports one load balancing algorithm based on source and destination MAC address pairs.

Ports bond together if connected to the same link partner and their keys match. A link partner cannot be discovered for Static link aggregation. In this case, ports aggregate based on keys alone.

Like a PortShield host, the aggregator port cannot be removed from the LAG as it represents the LAG in the system.


	NOTE: Once link aggregation has been enabled on VLAN trunk ports, additional VLANs cannot be added or deleted on the LAG.

Topics:

•

Viewing Link Aggregation

•

Creating a Logical Link (LAG)