Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 27 subscribers
  • Views 6735 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Public IP Routed Subnet - How to set this up?

DanAvery

I have purchased a Sophos XG105 Firewall to replace our current Draytek 2830 router.

The Sophos is setup with WAN, LAN and required port forwards but the one bit I'm struggling with is setting up the IP routed subnet we had set up on the Draytek.

We have a bunch of IPs provided by the ISP. x.x.x.202 to x.x.x.205, gateway x.x.x.201.

The WAN connection is setup on x.x.x.202, however on the Draytek we had one of the LAN ports set up so we could split the connection to a neighbour, as described here https://www.draytek.co.uk/archive/kb/kb_vigor_2ndsubnet.html. The neighbour's router is then set up with static IP addressing of x.x.x.204 and gateway of x.x.x.203.

How do I replicate this on the XG105?

Thanks in advance!



This thread was automatically locked due to age.
Parents
  • 0

    Hi Dan,

    i don't know if i correctly understand your setup.

    two options:

    routed: your provider gives you one public ip and an additional routed subnet:

    create WAN Interface with public ip

    create DMZ Interface with one of that IP and connect your hosts with other ips from that subnet pointing to XGs ip as Gateway

    bridged:

    you only have one subnet with provider router as Default gateway and no other routes configured on your provider router

    you could create a bridge Interface with one IP as bridge IP (firewalls primary IP), connect the provider router to one and connect your public IP Stations to the other bridge-port

     

    yours Lukas

Reply
  • 0

    Hi Dan,

    i don't know if i correctly understand your setup.

    two options:

    routed: your provider gives you one public ip and an additional routed subnet:

    create WAN Interface with public ip

    create DMZ Interface with one of that IP and connect your hosts with other ips from that subnet pointing to XGs ip as Gateway

    bridged:

    you only have one subnet with provider router as Default gateway and no other routes configured on your provider router

    you could create a bridge Interface with one IP as bridge IP (firewalls primary IP), connect the provider router to one and connect your public IP Stations to the other bridge-port

     

    yours Lukas

Children
  • 0 in reply to lna

    Hi Lukas,

    Thanks for your reply, I'm not sure I understand it though!

    We have a block of IPs provided by our ISP a.b.c.202 to 205 with gateway a.b.c.201.

    Our neighbour has IP address a.b.c.204 from that range set up as a static IP on their router.

    Here is the configuration of the Draytek IP Routed Subnet (this is the only setting needed for their router to do this):

     

    Here is a diagram of our networks:

     

     

    Does this help?

    I've set up the WAN and LAN on the Sophos XG105 without issues however if I try and bridge the WAN to DMZ on a different IP I lose WAN access.

    I've added aliases etc but I cannot understand how to get this working.

    Thanks