Hello.
i have a customer how want to use 2 XG 450 SFOS 17.5.8 MR8
He uses privat and public IPs for interal traffic.
He wants all public Networks routed from the XG 450, the internal Networks are routed by a Cisco Coreswitch.
Now we have a Webserver with IPs in both public and private Networks.
When i try to open the Website i can see in the tcpdump on the Webserver that syn is sended by the right public ip, but the Webserver is answering with his privat IP because the Source IP is in the same Subnet. ITs a little bit hard to discribe :-D
i came across a post here:
To overcome Asymmetric Routing-
Logon to CLI Console via Telnet or SSH, go to option 4. Device Console. Execute:
console> set advanced-firewall bypass-stateful-firewall-config add source_network 10.x.x.0 source_netmask 255.255.255.0 dest_network 192.168.1.0 dest_netmask 255.255.255.0
community.sophos.com/.../troubleshooting-guide-for-xg
But when i try to access this points, i cant see them. I can display the advanced firewall by "show advanced firewall". Under "set", i can only see the Option ips :-/
Im logged in as admin.
Can anyone help me?
This thread was automatically locked due to age.
