Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 39 subscribers
  • Views 2074 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

RED and Bridge

Wolfgang Ritter1

Another try to solve my problem.

I have on a regulary base problems with DNS over Port1 to RED connection. Due to the situation that i have to different networks 192.168.100.0/24 and 192.168.101.0/24 (red).

I can't see the different servers on a windows explorer, but that is the smaller problem. I am also loosing the connection from my NAS to the DNS server from the red interface.

From my side i have to further possibilites to try to solve it.

  1. working with a netmask of /23 that would handle a range from 192.168.100.0 to 192.168.101.254 but i think that would just work from the side of the port1 interface and not from the red
  2. working with a bridge so that i will have all devices on one network 192.168.100.0/24

If i work with the second variante, i should be able to see all allowed devices on my windows explorer.

Could someone approve my thoughts! I accept also if someone denies my conclusion. It makes no sense to try to win a formula 1 race with a bycyle :=).

Thanks
Wolfgang



This thread was automatically locked due to age.
  • +2

    Hi  

    You may bridge the RED and LAN network if you want. This is possible by using this KBA: Sophos XG Firewall: How to configure a LAN and RED devices to be on the same network. Let me know if this helps or not.

    Regards

    Jaydeep

  • 0 in reply to Jaydeep

    Hi Jaydeep

    i changed the mode to bridge and it works. Had a problem with the access from the RED side. Forgot to open the WAN port for administration.

    But i have another problem, now.

    I had to add a new DHCP so far is it ok. Port1 and RED are not available anymore. Instead of this two interfaces i have the bridge interface, now.

    The funny part is, that the DHCP doesn't place the predefined IP addresses to the mac addresses. By the leases are written dynamic instead static. Is there a known error?

    Thanks
    Wolfgang

  • 0 in reply to Wolfgang Ritter1

    Hi  

    I have not heard of any such error. So you mean to say that, IP addressed are not assigned to the same machine when they ask for IP renewal? That can only happen if the device is running short of IP addresses and had assigned that IP address to other machine when the lease expired.

    Regards

    Jaydeep

  • 0 in reply to Jaydeep

    Hi Jaydeep

    I can't think that i am short of IP addresses. I would say i am short of daylight [:$] and time.

    During the preparation of screenshots i found an MAC retyping error (my windows and dns server). My NAS wasn't able to fetch the correct IP address without a restart of them.

    At this time it seems ok for me. Not all static IP's are shown at least on the ex RED interface, but i see a few dynamic IP's on both ex interfaces which are so far ok.

    A final conclusion has to wait until the weekend, if i am on my weekend location again.

    Thanks was a great help and hurting process for me.

    Learning effect to define everything at the beginning, if i setup the firewall. For this i have my home version.

    Thanks again
    Wolfgang

     

  • 0 in reply to Wolfgang Ritter1

    Hi  

    Glad to know that it's working good so far. Feel free to post here if you get any bumps along the road. Or create a new post for any new query that you might have.

    Regards

    Jaydeep

Unfiltered HTML