We are currently being provided a block of 5 static IP's through our Comcast Fiber EDI connection with Comcast providing us (2) ranges of IP's. We get an L3 range and a Usable range. My understanding of this is to allow easier troubleshooting of the Comcast Modem for their technicians. We are moving from a previous configuration with a Cisco L3 switch in front of Sophos XG (between it and the Comcast Siena modem) to hopefully allowing the Sophos XG to handle the routing of the Cisco switch. Our Cisco switch acted as a DMZ and took in traffic on our L3 range (port1) and allowed traffic out on our usable IP block range (port 2). This Usable block was then passed to the Sophos from the Cisco (port 2) to the Sophos WAN port (port 2). From inside our LAN we would only see the usable IP block range as that is what it was getting on the WAN port from the Cisco.
Is there any way to remove the Cisco switch from the network and allow the Sophos XG to handle taking in a WAN connection from our L3 range but act as the usable IP range block toward the LAN? We would like to remain with the same setup we have currently to eliminate the need to have our PTR records changed with Comcast for our email traffic.
L3 Range:
X.X.X.138/30 - IP Block
X.X.X.137 - Gateway
Usable IP Range
X.X.X.130/29 - IP Block
X.X.X.129 - Gateway
This thread was automatically locked due to age.
