Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 1136 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG and Airtel FTTH with static IP address

Mayuresh Bhagwat

Hello,

I am working with a customer and facing a strange issue. They have 2 ISP links:

Leased Line - Vendor One OTT - Static IP - works absolutely fine

FTTH - Airtel - Static IP - works fine with Sophos WAN interface set to DHCP, however face issues getting FW configured with static IP

Steps we have followed already:

- Set one port (port 4) on the Airtel router to bridge mode and tried next steps on Sophos:

     a) Create a VLAN with static IP 

     b) Create an alias on the interface

Neither seems to help. We need the static IP configured on the XG device to ensure VPN failover between the 2 links. 

Any clue on what else could be done to resolve this issue?



This thread was automatically locked due to age.
Parents
  • 0

    Hello Mayuresh,

    Thank you for contacting the Sophos Community.

    It would depend on your ISP, as some of them (like mine) even set a static IP, they provide it via DHCP starvation, due to how they work with ARP.

    Regards,

  • 0 in reply to emmosophos

    Seems the Airtel doesn't allow bridging the modem / router further down the line. I have managed port forwarding and now I need a work around for the actual issue that I was trying to bypass....

    Now we have 2 ISP's and the WAN ports on Sophos are configured as: 1) Static Public IP address b) Dynamic Private IP address

    I need to create a SSL VPN connection that should failover between the links in case one fails. AFAIK, this would need the config file to be edited to replace the DHCP IP address with the static public IP for the airtel connection, in order to achieve the aforementioned goal. However, I cannot ask the users to do this job and its difficult to do the changes in individual files for each user and then share them with the users.

    Any other way this goal can be achieved? Any help is highly appreciated. 

Reply
  • 0 in reply to emmosophos

    Seems the Airtel doesn't allow bridging the modem / router further down the line. I have managed port forwarding and now I need a work around for the actual issue that I was trying to bypass....

    Now we have 2 ISP's and the WAN ports on Sophos are configured as: 1) Static Public IP address b) Dynamic Private IP address

    I need to create a SSL VPN connection that should failover between the links in case one fails. AFAIK, this would need the config file to be edited to replace the DHCP IP address with the static public IP for the airtel connection, in order to achieve the aforementioned goal. However, I cannot ask the users to do this job and its difficult to do the changes in individual files for each user and then share them with the users.

    Any other way this goal can be achieved? Any help is highly appreciated. 

Children
No Data