I have just setup my XG330 and I plan to use it as my core router so I have assigned .1 for each subnet. My switches do not have any IPs configured except for their management IP which is in VLAN 10. InterVLAN routing seems to be working fine - I can successfully access data in the server VLANs from the Workstation VLAN (192.168.100.0/24, VLAN 100). I am also able to reach the Sophos management IP (192.168.10.2) from my workstation BUT I am not able to reach any other device in the management VLAN (192.168.10.0/27, VLAN 10). Below is a summary of what is working/not working with IPs:
PC (192.168.100.48) --> default gateway (192.168.100.1) ✓
PC (192.168.100.48) --> Sophos Mgmt IP (192.168.10.2) ✓
Sophos Mgmt IP (192.168.10.2) --> Switch Mgmt IP (192.168.10.5) ✓
PC (192.168.100.48) --> Switch Mgmt IP (192.168.10.5) X
I have checked the packet trace on Sophos and it seems that Sophos passes the PC traffic to the switch but the switch isn't responding. Occasionally, I see that the switch replies with a multicast ARP-NDP Reply destined for 224.0.0.1. I am not sure what this means - I have set up a network firewall rule on the Sophos to allow traffic to pass between the workstation zone (VLAN 100) to the management zone (VLAN 10) and I can see that the rule is being hit and is allowing traffic, but for some reason I still cannot access my switch management console. What am I missing here?
This thread was automatically locked due to age.
