Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 7 replies
  • Subscribers 27 subscribers
  • Views 2160 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to configure multiple LAN (Subnets) to 1 LAN Interface?

Patrick Merkel

Hi at all.

I have my problems with configuration to the XG 330.

On our old LANCOM  Router we have a single lan port using 192.168.150.1, 192.168.100.1, 192.168.250.1, 192.168.101.1, 192.168.15.1 and 192.168.1.20. Some of this subnets are for VPN.

How can i add them all to one lanport at the XG? After the XG is a 48 Port Switch. They need all bound to WAN for Internet, but different rules/groups. 

But i cant figure it out to get all subnets on one lan port? (Maybe LAN Port 7). WAN ist Port 2.



This thread was automatically locked due to age.
Parents
  • FormerMember
    +1 FormerMember

    Hey Patrick,

    Did you mean that Port 7 Interface should have these IP addresses on the interface that can act as a gateway for Local Machines? 

    If these all are separate /24 subnets, You can achieve this by adding alias IP addresses on the LAN interface. Each alias interface can have a network of its own. But You can't add DHCP for these Alias interfaces.

    -> How to configure Alias IP

    You can keep Port 7 connected to a switch and use any internal DHCP or statically assign IP and gateway (Alias interface IP).

  • 0 in reply to FormerMember

    Thx for the help. This was, what i looking for :) Is it possible to add rules/groups to this alias ip  adresses?

  • 0 in reply to Patrick Merkel

    Why not create rule groups on the switch and assign an ip range to a different port on the XG? I think with this approach you will find rule management simpler and so will debugging.

    ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    You mean creating groups on the switch behind the XG? But for this, he must be managed or layer3, right?

  • 0 in reply to Patrick Merkel

    Correct. A different approach would be one IP range because using the ranges shown would indicate that the networked devices have fixed addresses so they can be created into clientless groups to manage firewall access.

    The VPNs are now provided by the XG so that network range is not required.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • 0 in reply to Patrick Merkel

    Correct. A different approach would be one IP range because using the ranges shown would indicate that the networked devices have fixed addresses so they can be created into clientless groups to manage firewall access.

    The VPNs are now provided by the XG so that network range is not required.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

Children
Cookie Information Banner