So, I have a client that has asked for assistance with an unusual problem.
The Sophos XG is configured in Router on a stick mode in conjunction with a Cisco 2960x and has multiple VLANS configured. Everything is working fine.
However, one particular piece of equipment has a network interface but does not allow you to set either the default gateway nor a static IP route. In order to connect to the management software on a PC, the PC has to be in the same VLAN / IP Subnet as the device is sending out ARP requests for the target IP (which has to be in the same subnet)
Because of these restrictions, I cannot use proxy arp.
Would it be possible to craft a NAT policy that presents 10.100.20.100 as 10.100.18.100 ?
I've tried to do this already but the NAT rule never gets triggered. It looks like the Robot Arm only ever works with a PC on the same subnet as it's initiating the connection by an ARP request..
I'm doubtful we can get the robot to see anything on a different subnet as the device will only allow you to set a "target" address for the PC controller in the same subnet.
Any thoughts would be gladly appreciated.
Thanks
MB
This thread was automatically locked due to age.