Hi all,
I am new to Sophos and thanks to you all I have been able to get my new XG210 sort of up and running. As mentioned in a previous thread, I was dealing with asymmetrical routes and I added the set advanced firewall bypass-stateful-firewall-config for each of the remote subnets to get that working. Most things seemed to be working, including forwarding services from the WAN port to different servers. However something baffling is happening and I cannot figure it out nor can I figure out even where to look. The issue is that all clients who have received IP's via DHCP (from a Windows DHCP server) can get out to the internet just fine, ping works, DNS works, HTTP works, HTTPS works, etc. However, any client with a static IP utterly fails to get out to the internet. No ping, no traceroute, no HTTP, no HTTPS, nothing. If I set it to DHCP, it gets out, if I set it to static, traffic just dies. I can ping the IP of the Sophos box.
Naturally I thought there was a firewall policy rule that was the cause but its not, I have a rule that allows all LAN zone to WAN zone. No logging that I've seen shows anything being blocked, its as if the box doesn't even realize its getting traffic to go out to the internet, but as soon as I switch to DHCP, it works fine.
Also, YES, I quadruple checked to make sure I was putting the same/correct IP in for default gateway when entering static IP's on the client.
Thanks in advance.
This thread was automatically locked due to age.
