Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 27 subscribers
  • Views 2265 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Modify source address of interface

Ruben Rodriguez1

I'm going to change my Mikrotik configuratión to Sophos but i can't config WAN properly.

The configuratión is just like that:


WAN interface:

10.0.0.2/24 gateway 10.0.0.1 (network without internet). IP Public on Alias  (x.x.x.x/32)

Through this network i can change source address with a new MASQ configuratión and alias public ip on WAN interface. Then i can use from LAN network Internet with this Public IP address without problem. BUT, Sophos doesnt' have internet, becouse try go out with 10.0.0.2 like a WAN IP Address and cant access to internet.

How can i modify source address on WAN interface for output connections of sophos.

Thanks!!



This thread was automatically locked due to age.
  • 0

    Hi,

    why do you need the /24 on your WAN interface, why not just use the /32.

    What is your internal address range? You will need a different address range on the internal network to your external network.

    You will need a firewall rule source LAN, any - destination WAN, any, allow, log. Please note there is no MASQ if you are using private IP addressing on both sides of the XG.

    Ian

  • 0 in reply to rfcat_vk

    Thanks for answering,
    Internally I use 192.168.1.x / 24 but it is totally irrelevant.
    The network 10.0.0.x/24 is from the ISP. And it is the way to get Public IPs without wasting IPs. It is an alternative to PPPoE.
    I have used this configuration in PFSense and in Mikrotik without any problem, but I can not do it here.
    I have to insist that the LAN works correctly. What I do not get is that Sophos, himself, has connectivity.

    Thanks

  • 0

    Using this command in advance: ip route add default via 10.99.2.1 src 185.44.26.171

    but when i reboot the system the command disappear... any idea how i can configure this from GUI or how i can set permanent this command.

    Edit:

    Another solutión is that i could use Local network Zone, but in my Sophos doesnt exist... how i can activate this?¿

     

    Thanks.