Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 18 subscribers
  • Views 3373 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VLAN Routing and Zones

Antonio Principato

I have a dumb question so please be gentle.  I have Port 1 on my Sophos XG setup with the default VLAN 1, VLAN 20, and VLAN 30.  Port 1 is then connected to a trunk port and switch with the appropriate VLANs configured.  All is good however, I'd like to use VLAN tagging on my access point but I can't figure out how to write a firewall statement allowing VLAN 20 to bypass my web filter and VLAN 30 to be filtered.  Part of my confusion is that ports are tied to zones.  Can I write a firewall statement just for a particular VLAN or subnet?  I hope this makes sense.  



This thread was automatically locked due to age.
Parents
  • +1

    Hi Antonio,

    The Vlan will have a separate network , you may define the source network as your VLAN 20 and 30 on Separate rules. The rule would follow from Top to Bottom so make sure specific rules are on top of the default rule So it would follow the predefined rule first.

Reply
  • +1

    Hi Antonio,

    The Vlan will have a separate network , you may define the source network as your VLAN 20 and 30 on Separate rules. The rule would follow from Top to Bottom so make sure specific rules are on top of the default rule So it would follow the predefined rule first.

Children