Problems with zones and firewall rules

Question

Hi, 
 I am facing a problem with the LAN zone attached to multiple interfaces. FW: SFOS 19.5.2 MR-2-Build624 
 Setup: Port1: LAN (192.168.30.254/255.255.255.0) Port2: WAN Port3: LAN (192.168.32.254 /255.255.255.0) I've created the following test rule: Source zone: LAN Source network and devices: 192.168.32.1 Destination zone: LAN Destination network: 192.168.30.1 Services: Any A device with IP 192.168.30.1 is connected to Port1 A device with IP 192.168.32.1 is connected to Port3 No client-based firewall involved. I am unable to ping from 192.168.32.1 to 192.168.30.1 As soon as I change the Source zone to "Any" I can ping 192.168.30.1 As soon as I add a new Zone e.g. Testzone and attach it to Port3 and modify the firewall rule to source "Testzone" I can ping. What am I doing wrong? Thank you. Kind regards

emmosophos · Answer

Hello there, 
 Thank you for contacting the Sophos Community. 
 Your configuration seems to be correct; what does a drop packet capture or GUI Pcap shows when you do the test when it isn&rsquo;t working? 
 Regards,

Problems with zones and firewall rules

Top Replies