Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 2245 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

access internet through sophos xg home without need to proxy

MG Group

please i need help, i have vlan's environment , and each vlan have it's default gateway, im connected to vlan 10 with default gateway 192.168.20.1 and i have a default route 0.0.0.0/0 192.168.20.40 to allow me access the internet, the ip 192.168.20.40 is for my sophos xg home, when i try to connect to the internet i can't access the internet, but when i configure my NIC manual with default gateway 192.168.20.40 direct in it i can access, i can access also when i put proxy ip and port in my browser, i want to access internet directly without need to configure my PC manually and without using proxy ip and port in my browser



This thread was automatically locked due to age.
  • 0

    You do not need to use routing, but use firewall rules instead.

    Why are you putting the proxy in your PC, why not use the default proxy in the XG by enabling http/https scanning and adding web and application allow all to your firewall rules.

    Ian

  • 0

    Hello MG,

    In your DHCP settings, you can set gateway as 192.168.20.40 and it should automatically assign the systems to send WAN traffic to the gateway. Your Switch should divert your traffic to 20.1 and XG will firward your request to 20.40. But the reply packet should traverse through XG firewall to your host machine otherwise you would need to add bypass rule for stateful inspection. 

    Could you please share your network diagram and also mention where the inter-vlan routing takes place?

  • 0 in reply to rfcat_vk

    when i try to access without proxy and try to ping as example google.com the destination port unreachable is appear, so i must use proxy in browser or set my default gateway on my pc with  the sophos xg home ip address.

  • 0 in reply to MG Group

    Hello MG,

    Then you may need to configure your  Sophos XG as a gateway for your end machines and create a Static Route 0.0.0.0/0.0.0.0 to 20.40 and make sure you have applied NAT MASQ so that the return traffic does not change its route.