Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 9 replies
  • Answers 2 answers
  • Subscribers 28 subscribers
  • Views 9064 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Multiple subnets on same LAN

Afternoon Tea

Our Lan is on range 192.168.0.0/24 and I would like to add another subnet to our LAN 192.168.1.0/24 to allow for more devices on the network as we are running out of IP addresses.  Our DHCP is handled by a Windows 2008r2 server where I setup a superscope with the 2 scopes in it for the aforementioned subnets.  In the sophos xg we have the primary subnet as 192.168.0.0/24 with 192.168.0.254 as the gateway.  So far I tried setting up an alias with 192.168.1.254 however that did not work and produced some strange results. What do I need to do to get this setup to route properly in the XG? Thank you for your help. 



This thread was automatically locked due to age.
Parents
  • 0

     the easiest method to increase the number of hosts on a network would be to change the subnet mask of your existing network to accomodate more hosts eg /16 instead of /24. But this involves ip address planning . if you plan your ip scheme right then you wouldnt need superscope to increase the complexity/load  of your dc.

  • 0 in reply to lara20

    Thank you for your response.  I have several VPN setup that include vpn that would be within this scope such as 192.168.2.0/24 and 192.168.3.0/24.  If I changed the subnet mask to /16 would that cause issues with the site to site VPNs?

  • 0 in reply to Afternoon Tea

    from your post i understand

    your existing network is 192.168.0.0 /24

    You want to increase the number of hosts on the network

    You also have site to site connectivity ( IPSEC VPN) from 192.168.2.0 , 192.168.3.0 to your network 192.168.0.0

    how is it currently setup for these site-to-site vpn now.

    https://community.sophos.com/kb/en-us/123140

  • 0 in reply to lara20

    Hi you are correct they are setup using IPSEC VPN just as described in the KB.  So In the end I will have a network configuration like this:

     

    192.168.0.0/24 Site 1 Primary subnet
    192.168.1.0/24 Site 1 Secondary subnet (This is what I want to add)
    192.168.2.0/24 Site 2 site 2 site ipsec vpn
    192.168.3.0/24 site 3 site 2 site ipsec vpn
    192.168.4.0/24 site 4 site 2 site ipsec vpn

    Thank you.

  • 0 in reply to Afternoon Tea

    You could also connect the "second" LAN to another Port on XG and then bridge those two LAN ports. You will have to add at least one firewall rule which allows traffic from both sides or you can create more specific rules.

Reply Children