Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 5 replies
  • Answers 2 answers
  • Subscribers 26 subscribers
  • Views 10267 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

failover WAN DHCP setting

EricSoller

Hello,

I am trying to setup a second WAN ISP on my XG230. This WAN connection has its own router and give out DHCP to requesting devices.

1. I setup a new interface on my WAN zone with the correct static IP, subnet and Gateway IP.

2. I set it up as a backup failover WAN

3. I connected the ISP router to the XG230 WAN port (6)

 

This router does not get an IP address so I was thinking of creating a DHCP in my new interface but DHCP wants me to stay within the interface subnet range.

 

My question is, how do I setup my XG230 to give an IP address to this router that is now attached to my new WAN port 6 so the router can connect to the internet?

 

Thank you

Eric

 

 



This thread was automatically locked due to age.
Parents
  • +1

    Hi Eric,

    You wouldn't normally want to give an IP address upwards to the Router that's connected to the IP as then this can cause a gateway address conflict wherein you'd be giving the router a DHCP address.

    Just to clarify, are you trying to make the XG own the external (public) IP addresses while connected to that router?

    If so, unless that router is in "bridged" mode then this would not be able to occur and your setup would have to be as follows:

    1. Set up router connected to the ISP
    2. Set up router to provide DHCP to the internal IP Addresses
    3. Set the Port6 WAN interface to receive it's IP by DHCP

    If you want the XG to have public IP addresses, we need to know more about the ISPs router and what it's capabilities are. But in normal circumstances DHCP is provided from the external to the internal, not the other way round.

    Emile

Reply
  • +1

    Hi Eric,

    You wouldn't normally want to give an IP address upwards to the Router that's connected to the IP as then this can cause a gateway address conflict wherein you'd be giving the router a DHCP address.

    Just to clarify, are you trying to make the XG own the external (public) IP addresses while connected to that router?

    If so, unless that router is in "bridged" mode then this would not be able to occur and your setup would have to be as follows:

    1. Set up router connected to the ISP
    2. Set up router to provide DHCP to the internal IP Addresses
    3. Set the Port6 WAN interface to receive it's IP by DHCP

    If you want the XG to have public IP addresses, we need to know more about the ISPs router and what it's capabilities are. But in normal circumstances DHCP is provided from the external to the internal, not the other way round.

    Emile

Children
  • 0 in reply to Emile Belcourt

    Thank you Emile,

    Yes, I setup my XG230 WAN interface to own the public IP if my backup ISP.

    I realized connecting my backup WAN interface with a DHCP was not the solution.

    I installed this XG230 a couple months ago and I am still on the learning curve.

     

    About your 1,2,3 points as I understand them.

    Point 1: My backup ISP router is set and connected with a WAN static IP, Sub & gateway and it does work.

    Point 2: My backup ISP router is set to provide DHCP to any internal devices that connect.

    Point 3: Set the port6 WAN interface to receive it's IP by DHCP

     

    If I understand correctly, point 1 and 2 are good and all I got to do is to change my WAN interface to DHCP and created a DHCP to give an address to my ISP router.

     

    Did I understood this correctly?

     

    Thank you for your help.

     

  • 0 in reply to EricSoller

    Hi Eric,

    That's pretty much it and you should receive a private IP from the Router. Now just to clarify this means any Business Application rules that forward ports to internal hosts will no longer operate because the Router will drop unsolicited connections from the internet. Basically the setup you've describe will allow outbound traffic only and the XG will not be in control on traffic initiated from the internet, the router will.

    If you are just using the second connection as described as an outgoing backup connection in case the main WAN fails then this will be perfectly fine.

    Hope it works for you! :)

    Emile

  • 0 in reply to Emile Belcourt

    Thank you,

    I will test this on Monday, we are preparing for hurricane Matthew coming tomorrow so I don't have much time to deal with my XG today.

  • 0 in reply to EricSoller

    Emile,

    I have my secondary backup ISP up and connected to my XG230. I choose to leave the secondary router as is and connect my SOPHOS port6 to this router using DHCP. Setup the WAN Link manager to be a backup of the main and it does work. Thank you.