Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 3 answers
  • Subscribers 42 subscribers
  • Views 1865 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Firewall: WAN link Manager

Admin_Vanna

Hi,


I need help with two things.
Firstly, regarding WAN link manager.
We have two ISP to us. ISP-A being primary and ISP-B being secondary usage (Both ISPs are Active type, there are no Backup type).
ISP-B status is always displayed as Inactive. I am unable to figure out why. What are the things I need to look into and make changes, if any, to make ISP-B status to Active?

Secondly, I want to enable internet access to devices only when they have DHCP static IP mapping to them (any type of devices). How do I do that? Do I need to change anything on router settings?

Thank you for your advice.



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to Vivek Jagad

    Hi  ,

    Thank you for your response.

    But I still could not resolve it.  Additionally, when trying to connect to Wi-Fi using mobiles, as long as password is entered correctly, it will get connected and will be able to access internet, even without static IP mapping in DHCP. I only want the devices that have IP mapping to have access to internet.

Children
  • +1 in reply to Admin_Vanna
    Admin_Vanna said:
    But I still could not resolve it. 

    Seems the issue is from ISP router 

    Do the following check : 

    1. Ping 8.8.8.8 from the same interface where ISP-2 is connected what is the output?

    Open SSH on same time and run below command too 

    console>tcpdump 'host 8.8.8.8 and proto ICMP 

    2. Post failover condition set and arp ping output as per the shared kb by Vivek Jagad ,

    3. Did you connect same ISP directly on Laptop and the internet was working?

    Regards

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Thank you  .

    I didn't realize the problem from ISP side. It's been running on private IP route mode network, to change it to my requirement I need to configure it Bridge mode with static IP address.

    Thank you for guiding me through the process.

  • +1 in reply to Admin_Vanna

    Hello,

    you could as well use a transfer net between ISP router and your WAN2 port. Depending on the type of router you would avoid the bridging, then. I would always prefer routing over bridging.

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Unfiltered HTML