Thread Info
  • Locked Locked
  • Replies 5 replies
  • Subscribers 29 subscribers
  • Views 2256 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Trying to hook a Sophos into a Sophos. Need ideas.

Greg Rogers

 

I have two sophos xg's and  a switch and various computers. I'm trying to achieve what you see in this diagram. Now I've gotten it working, however I want to make it so that everyone on the 192.168.60.0/24 subnet is unable to talk to anyone else on the 192.168.99.0/24 subnet. I purely just want them to have internet access and I also want to pass through a public static IP to the Sophos XG #2.

Let me know your thoughts and ideas.

Thanks :)

*edit* I know one option is setting the #2 Sophos wan subnet to /28, but I want to make sure that no matter what the #2 is set to, they will not be able to talk to anyone else on the 192.168.99.0/24 subnet.



This thread was automatically locked due to age.
Parents

  • Hi Greg ,

    First you would need to check the packet flow from 60.0 to 99.0.

    If the traffic is routed trough your Switch directly then Firewall #1 has no role in the communication. So you can set the ACL rule on either on the switch or Firewall rule on Firewall #2.

    You can configure a VLAN and configure inter-Vlan Routing on FW#1 and then the rule on FW#1 would be effective..

Reply

  • Hi Greg ,

    First you would need to check the packet flow from 60.0 to 99.0.

    If the traffic is routed trough your Switch directly then Firewall #1 has no role in the communication. So you can set the ACL rule on either on the switch or Firewall rule on Firewall #2.

    You can configure a VLAN and configure inter-Vlan Routing on FW#1 and then the rule on FW#1 would be effective..

Children
No Data