Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 17 replies
  • Subscribers 29 subscribers
  • Views 37620 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Client Isolation not working on XG Home Firewall with AP55

RPR84

I have install a Sophos XG Home firewall with an AP55. I create a wireless guest network with following settings:

Security Mode: WPA2 Personal
Client Traffic: Separate Zone
Zone: WiFi
IP address: 192.168.235.254
Netmask: 255.255.255.0
Encryption: AES
Frequency Band: 2.4 and 5 GHz
Client Isolation: Enabled
Hide SSID: Disabled
Fast Transition: Disabled

Client Isolation is not working. Each client can reach other clients in the same guest network. Is there anybody the knows how to configure client isolation that wireless clients couldn't reach other clients? Or is this a bug in the XG firewall?

Thank you!



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to RPR84

    I've install the firmware 16.05.1 MR-1 and problems with client isolation are not fixed.

    I've tested further with the following results:

    • In first place the SSID was configured with 2,4 and 5GHz signal. Client isolation was not working (clients where connected to the same AP and using 5GHz signal);
    • When I configure the SSID only with 2,4GHz, client isolation works fine!
    • When I configure the SSID only with 5GHz, client isolation works fine!
    • When I configure the SSID again with 2,4 and 5GHz, client isolation doesn't work.

    I configure the Guest SSID only with 2,4GHz and enable client isolation. For now this is an acceptable workaround. But I think it is desirable that client isolation works also when 2,4 and 5GHz signals are configured.

  • 0 in reply to RPR84

    Rpr84,

    Thanks for sharing your experience.

    Can you open a ticket with support?

    Thanks

  • 0 in reply to RPR84

    Hi RPR84,

    I already suggested this in my previous post. I would like to know if you can raise it to support and get it checked. The feature works at my end which is tested and confirmed.

    Thanks

  • 0 in reply to lferrara

    @Iferrara: I'm using this in a home configuration with home license. Is it possible to create a ticket for home-users?

    @sachingurung: Your suggestion was for me the trigger to test it with a single band type configuration. Thank you!

  • 0 in reply to RPR84

    Unfortunately not. Home version does not allow to create a ticket.

    is there a way to assist ?

    He bought the AP55 and in some way we should be able to contact him to check its config.

    Thanks to all!

  • 0 in reply to lferrara

    Hi lferrara,

    I have configure the firewall and access points for my fathers home network. So for this environment it is a acceptable workaround to configure only 2,4GHz band for the guest network. But I thought when it is a bug, its maybe interested for Sophos for bug fixing in next version.

  • 0 in reply to RPR84

    Yes! This is the rigth Spirit.

    At the moment Sophos developers and engineers come here to see possible issue that many users are facing and they investigate.

    Let's see if can give you an hand.

    Regards

  • 0 in reply to lferrara

    Hi Luk,

    I am in a discussion over this matter. If a customer has bought AP and using it with a home version of our firewall then, they should have right to get support for issues associated with APs. The only thing mandatory is to have the AP within the warranty period. 

    Thanks