I have my xg in gateway mode. It is part of my layer one network. My default lan is 192.168.0, the gateway is setup with a static rout on 192.168.2. All of this is working fine.
I then have a WiFi network setup with two SSIDs. One is on vlan 1 and part of the layer one 192.168.0 scope. This SSID has all the rules that everyone else has. The second is a guest network on vlan 20 using 10.10.1. This also works fine. Users on my guest network can get out to the internet but can not see, ping or access anything on vlan 1(192.168.0). They have no web filter rules applied. In the rule that alows the wifi port to go out the wan I have no loging, no scan, no ips, nothing set.
The problem I have is that in my reports under intrusion attacks I see a bunch of my guest DHCP addresses. When I look at specific ones I see my employees iPhone hitting some random ips that sophos is saying are victims.
Why are these being logged at all? I dont really care what they do on their iphones.
This thread was automatically locked due to age.
