Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 1380 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Can you bridge two LAN ports (on the same router) that use different Gateway IP addresses?

Jay Sherwood

Hi - I have a Sophos XG 135 and I have set up two different networks with different Gateway IP addresses.  

Port 1 uses 192.168.1.1

Port 8 uses 10.150.121.1

Port 2 is the WAN port

I would like devices associated with Port 1 to be able to communicate with devices on Port 8.

I have set up a firewall rule that allows LAN traffic to travel freely.

Below is a screenshot of my interfaces

Br0 is a bridged-pair with LAN Ports 1, 3, 4, 5, 6, 7, 9 and uses 192.168.1.1 as the Gateway IP Address

Port8 uses 10.150.121.1 as the Gateway IP Address.

Thanks so much for any suggestions.

Jay



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Jay Sherwood

    Hi,

    you don't actually have the two networks bridged, you have them separated by a firewall rule, so yes that will work.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    rfcat_vk - thanks so much for the quick reply.

    When I try to bridge the two networks (i.e., Port8 to br0) I am unable to do so, the only port that appears an option to interface with is Port2 which is the WAN Port.  If I add Port8 to the br0 bridge, I am able to do so, however it loses its unique Gateway IP of 10.150.21.1 and goes to 192.168.1.1.

    I suspect I did not fully grasp your response (too new at this) :).  

    Thanks so much for any help you can provide.

    Jay

  • 0 in reply to Jay Sherwood

    You can’t add the extra port to the bridge with it configured, but your lan rule will. basically do the same thing. All traffic will be able to access each device on any port.

    ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Ian - 

    Thanks so much for sending me down the right path.  Here is what I ended up doing:

    I set up a new Zone with the only member being Port8

    Port 8 is also an Interface separate from the br0 (bridge) interface which has Port 1, 3, 4, 5, 6, 7 and 9 as members.

    Then I set up two firewall rules.  One to allow traffic between the WAN and the Zone associated with Port 8 and one to allow traffic between the Zone associated with Port 8 and the LAN Zone

    That did the trick.

    Jay

Unfiltered HTML