Hi there,
My director bought a pair of XG430s purely for IDS/IPS purposes with the plan to stick them in our existing infrastructure and gave them to me to make work!
Our existing set up consists of a Cisco ASA5516-X edge router with various other vpns and networks hanging off of it to other sites.
My plan is to put the XG430s in Bridge mode between the inside interface of the Cisco and our core switch. Firmware on the XGs is the latest 17.something jsut done today.
So it looks kind of like this Internet<-->(Outside Interface)ASA5516(Inside Interface)<--->XG430(Port1)<--->XG430(Port2)<--->Core Switch<--->Internal Networks.
I have the HA pair configured and have added Port1/Port2 to a bridge but as soon as I insert the units between the Core switch and the ASA all traffic dies. No pings, no IP nothing.
Bridge looks like this:-
Firewall rule looks like this:-
The firewall is just logging these type events... I'm led to belive that's new to this firmware and is just increased logging so havn't paid too much attention to it.
Anything wrong with that setup anyone can see?
As stated I just want to get this thing inline totally transparent for now and then start to swtich on features like IPS and the Sophos Client Heartbeat etc but can't seem to get off the ground with it.
I read the bridge mode guides like this one:- https://community.sophos.com/kb/en-us/123524 and I have a question in that should I be leaving the WAN port alone and say bridging ports 2 and 3 as a transparent bridge instead? Just not sure as never seen one of these before.
Cheers
James
This thread was automatically locked due to age.
