This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

2 VLAN to WAN with local DNS

I have two VLAN with subnet VLAN1 192.168.123.0/24 and VLAN3 172.20.24.0/26 , and I have my exchange server mail on VLAN3 with @IP 172.20.24.21 (with active directory and DNS )

And I have 1 WAN with @ip Public : 197.97.125.72
GW : 197.97.125.71

And on the DNS statique I put DNS1 my local DNS : 172.20.24.21

The issue is that when I try to acces on internet it's seems to be blocked by the Interface WAN gateway , and and don't have internet access

tracert www.google.com

1     1 ms    <1 ms    <1 ms 192.168.123.1

2      1 ms     1ms        1ms     197.97.125.71

*   * *   *
*   * *   *
*   * *   *

If anyone can help please

This thread was automatically locked due to age.

Parents

0 jprusch over 2 years ago

Bonjour,

can you post your interface definitions?

Did you MASQ 192.168.123.0/24 as well?
Cancel
Vote Up 0 Vote Down

Cancel
0 Tovo RAKOTOZANANY over 2 years ago in reply to jprusch

Hi jprusch,

interface wan
name : Port3-NET_GULFSAT
Port3
Network Zone : WAN

@IP satitique
IPV4 : 197.97.125.72/26
Gatewaay : 197.97.125.71

My LAN is on port8
Network Zone : LAN
@IP satitique
IPV4 : 192.168.123.0/24
Gatewaay : 197.97.125.71

No mASQ

BR

Tovo
Cancel
Vote Up 0 Vote Down

Cancel
0 jprusch over 2 years ago in reply to Tovo RAKOTOZANANY

You cannot use 192.168.123.0 as your interface ip. Is this a typo?
Cancel
Vote Up -1 Vote Down

Cancel
0 jprusch over 2 years ago in reply to jprusch

Can you please post screenshots of the edit windows?
Cancel
Vote Up 0 Vote Down

Cancel
0 Tovo RAKOTOZANANY over 2 years ago in reply to jprusch

Sorry 'it s IPV4 : 192.168.123.1/24 instead of 192.168.123.1/2

My LAN is on port8
Network Zone : LAN
@IP satitique
IPV4 : 192.168.123.1/24
https://drive.google.com/file/d/1kwiNXa9gISXQOXEUqacm-74ihSFfJmOY/view?usp=share_link

DHCP work fine, i can have an IP form ths, but the issue is to acces to internet

BR

TOvo
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Tovo RAKOTOZANANY over 2 years ago in reply to jprusch

Sorry 'it s IPV4 : 192.168.123.1/24 instead of 192.168.123.1/2

My LAN is on port8
Network Zone : LAN
@IP satitique
IPV4 : 192.168.123.1/24
https://drive.google.com/file/d/1kwiNXa9gISXQOXEUqacm-74ihSFfJmOY/view?usp=share_link

DHCP work fine, i can have an IP form ths, but the issue is to acces to internet

BR

TOvo
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 jprusch over 2 years ago in reply to Tovo RAKOTOZANANY

You can paste your screenshots here in the forums edit window. That is preferred over links to external webservers for security reasons.

And since I don’t have a Google account, I cannot access your link and content there.

Added info
[edited by: jprusch at 4:07 PM (GMT -8) on 28 Dec 2022]
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 2 years ago in reply to Tovo RAKOTOZANANY

Manahoana Tovo and welcome to the UTM Community! Yes, UTM, not the Sophos Firewall (XG) Community.

I will move your thread there so that more XG users will see your question and answers.

As Philipp says, it's always better to insert pictures here rather thna describe your configuration and observations - we work better with raw data.

Also, we can't know if external sites are properly protected. The only malware I've gotten in almost 15 years was from a link in this Community to an external picture in 2014. That's why we request inserted files/images instead of links to external sites.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 Tovo RAKOTOZANANY over 2 years ago in reply to BAlfson

LAN CONFIG

WAN CONFIG

DNS CONFIG

I can't have acces to internet (172.20.24.21 is my local DNS)

BR

Tovo
Cancel
Vote Up 0 Vote Down

Cancel