Hello all, looking for some help and guidance.
I have one office with a sophos xg and 4 remote sites using SD RED 20 units. All 4 SD RED 20 units are connected back to the XG using standard/unified mode. No issues with getting this all connected.
I have also deployed wifi across each location (apx120) which is also working fine.
However. When the tunnel drops at head office where the xg is, all remote locations lose their internet connectivity even though internet is still functional at the remote sites.
So, reading the vague documentation, I can avoid this by setting the mode to manual/split and making physical changes to the network.
I have turned off dhcp on the xg for the remote site, dhcp comes from the router at the remote site so that the gateway is the router. Any devices in the remote site now access the internet via the router gateway. Tunnel goes down and internet still works.
My issue is the wifi and the APs. They get their dhcp from the router and not able to contact the xg. I know this is a route issue but I'm not sure what route to add in order to get the APs working again. I need the APs to access the router gateway.
I read an article regarding MAGIC iP and that confused me.
I've spoken to support a few times and they couldn't help. Just sent me the article I had.
Anyone out there who has this working and willing to share and help.
This is actually the use case for a firewall instead. The problem is, the RED is "headless" without firewall, means the RED will not do anything, if the firewall is not reachable. Therefore there is no…