Firewall/routing question

Question

Hi, 
 I have a networking related question. I'm not sure if it's a configuration issue on the Sophos firewall. 
 
 I have a Sophos XGS 136 appliance with a number of physical interfaces configured with the following IP addresses: 192.168.100.1 and 192.168.200.220 
 The 2nd interface (192.168.200.220) is connected to another network via an old layer 2 switch 
 The Sophos appliance can communicate via ping to devices on the 192.168.200.0/24 network via the layer 2 switch 
 ... however a device on the 192.168.100.0/24 network (e.g. 192.168.100.2) is not able to communicate with the 192.168.200.0/24 network 
 The device with IP address 192.168.100.2 can ping 192.168.200.220 but not the gateway at 192.168.200.1 
 
 Refer to the attached diagram which clearly shows the network topology. 
 Note there are no free interfaces on the gateway device 192.168.200.1 - i.e. The only option I have is to work with the current topology 
 I'll need a bit of guidance on troubleshooting, provide it's a simple configuration changes on the Sophos appliance. 
 Cheers, 
 John

John Giovannis · Accepted Answer

Thanks for that. I did in fact do something like
ip route add 192.168.100.0/24 via 192.168.200.220 on the linux gateway machine, yesterday with some success

192.168.100.2 can ping most machines on 192.168.200.0/24 via the gateway at 192.168.200.220

I think this problem can be put to bed.

jprusch · Answer

Hello John, 
 you need to define a route to the 192.168.100.0/24 network on the gateway 192.168.200.1. 
 If you finished migrating to the new net, you can remove this.

Firewall/routing question

Top Replies