Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 10 replies
  • Answers 3 answers
  • Subscribers 40 subscribers
  • Views 2856 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Way to change dhcp adresses within command line?

FNG_117

Hi all,

Wondering if there is a way to set dhcp via cli?

Or what the best way to change the main interface IP without losing connection?

My issue is everytime I change the IP of the Port1, I expectedly lose connection. Trouble is that I cannot gain access again because there is no more DHCP.

Some guidance on SOP would be helpful.

Thank you.



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    why are you changing the IP address on Port 1?

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    No reason other than I want to. for the purpose of learning this aspect of the system.

  • 0 in reply to FNG_117

    If cli isn't possible maybe I can get some guidance on how to make it work?

    I only have 2 NIC. 1 LAN 1 WAN.

    I was able to change Port 2 to another LAN IP successfully and access the GUI via both ports. Trouble was accessing Proxmox GUI even though I could ping. So I switched everything back in Proxmox cli.

    My end goal is to have 3 VLANs on my network, but I my current IP subnet to be one of the VLANs. First step is going to be changing the Port IP or figuring out VLAN setup. I'm attempting both currently.

  • +1 in reply to FNG_117

    Hello,

    I recommend you register your Firewall on Sophos Central; once you can access the GUI via Central, change the IP of Port 1, and then try to access the GUI via the new IP assigned to Port 1.

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • 0 in reply to emmosophos

    Thanks for the suggestion, are you implying that I can also adjust the DHCP via Sophos central? Changing the IP alone isn’t enough as the DHCP range is invalid once the IP is changed and effectively locked out. I can change the IP easy enough by CLI and GUI but I believe the issue is more with the DHCP server. 

  • 0 in reply to emmosophos

    I’ll try to plug into the nic and manually change my IP to fit the new gateway subnet. Not sure that will work as there’s no DHCP. But I don’t fully understand all this networking stuff and am learning new stuff everyday. 

  • +1 in reply to FNG_117

    You disable the DHCP server before you change the IP address, then change the DHCP server settings.

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    I’ll give that a shot tomorrow. With the DHCP server off I should be able to change the IP of Port1 and still access the GUI to reconfigure the DHCP server instead of immediately getting locked out?

  • 0 in reply to FNG_117

    As long as you manually assign your PC a valid IP address.
    ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • +1 in reply to rfcat_vk

    That did the trick! No plugging directly into the router. I was able to leave my whole setup as is. It was the DHCP server that was causing me troubles, and quite possibly the firewall not accepting traffic from the new IP range. Turned DHCP off, added a rule to allow access from my PCs current IP to the new Sophos gateway, changed the gateway IP, and everything works!

    Created 163NET:

    Added 163NET:

    Disbaled DHCP:

    Changed Port1 IP:

    My PCs IP hasn't changed and I still have access, I'm guessing because of my rule I made:

    I would next fix the DHCP to match the new Port1 IP if I was going to keep the settings, but I was doing this more as POC. I have been battling with this for way too long my friend. LOL.



    Had to change the second DHCP pic to match the one with the new IP. Doubled up my original post.
    [edited by: FNG_117 at 4:15 PM (GMT -8) on 16 Jan 2024]
Reply
  • +1 in reply to rfcat_vk

    That did the trick! No plugging directly into the router. I was able to leave my whole setup as is. It was the DHCP server that was causing me troubles, and quite possibly the firewall not accepting traffic from the new IP range. Turned DHCP off, added a rule to allow access from my PCs current IP to the new Sophos gateway, changed the gateway IP, and everything works!

    Created 163NET:

    Added 163NET:

    Disbaled DHCP:

    Changed Port1 IP:

    My PCs IP hasn't changed and I still have access, I'm guessing because of my rule I made:

    I would next fix the DHCP to match the new Port1 IP if I was going to keep the settings, but I was doing this more as POC. I have been battling with this for way too long my friend. LOL.



    Had to change the second DHCP pic to match the one with the new IP. Doubled up my original post.
    [edited by: FNG_117 at 4:15 PM (GMT -8) on 16 Jan 2024]
Children
No Data
Unfiltered HTML