Greetings all-
This is my first post, but have been using XG for 2+ years.
I am trying to extend my system to provide better security for a few devices that I want to isolate better. I was thinking to do that, I would create a second LAN (192.168.2.X) and allow very limited access to my primary LAN (192.168.1.X). Both have subnet masks of 255.255.255.0.
LAN1 is on NIC1 and labeled as zone LAN1. It hosts my current existing network (computers, game systems, servers etc)
LAN2 is on NIC2 and labled as zone LAN2. I have moved one computer over to test communications from that computer (192.169.2.100) to the server on LAN1.
Both have DHCP running but the IPs are static for current devices.
I have setup a firewall rule from source: LAN1 and LAN2 with ANY devices to destination: LAN1 and LAN2 with any device. MASQ is off.
When I try to map the network drive on LAN1 from the computer on LAN2 I can see the firewall rule being accepted and the traffic is routed. The server tries to respond but is sending it's packet to 192.168.1.255 then the firewall rules block the traffic as "Appliance Access". The same happens when I try to ping the server. I can see a response going to the broadcast IP on 192.168.1.255 rather than to 192.168.2.100.
I have been searching the other questions and cannot tell where I am wrong. Do I need an additional gateway (currently only have one for the WAN)? I have seen some people add static routes but don't see how that changes this. Any help would be greatly appreciated. I can attach images of whatever is needed.
Regards--
This thread was automatically locked due to age.
