When the USG Work in Transparent Mode, the USG Cannot be Managed by the Network Management Software

Publication Date:  2012-07-17 Views:  186 Downloads:  0
Issue Description
The USG firewall is connected to the network in transparent mode. Two VLANs are created. One is used for services, and the other for network management.
Symptom:
The USG firewall cannot be managed by the network management software, and the network management interface of the firewall cannot be pinged through.
Alarm Information
None.
Handling Process
Change the firewall working mode to the composite mode, and set the management interface to a Layer-3 interface to prevent redundant Layer-2 links on the network from blocking the service interface or the management interface.
Root Cause
The network cable, link, and configuration are normal. There are quite a lot of redundant Layer-2 links on the network, so it is suspected that the spanning tree blocks the management network interface.
The execution result of the display stp bri command indicates that the spanning tree status of the VLAN interface for management is BLOCKING.
Suggestions
If a USG firewall is connected to the network in transparent mode, configure out-of-band network management for the firewall. Alternatively, you can set the firewall working mode to the composite mode to prevent the spanning tree from blocking the service interface or the management interface.

END