Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 41 replies
  • Subscribers 28 subscribers
  • Views 106610 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Firewall Traffic/Rules

MichaelCreamer

I am now having an issue with my firewall rules.  Traffic does not seem to be passing through them.  I also don't see any sessions.  I have it set up in gateway mode, and port 2 directly connected to my NetGear Router.  I see the gateway is up and I can ping out.  Little help please

 



This thread was automatically locked due to age.
Parents
  • 0

    are you using your netgear in modem mode or router mode??

     

    Ideally u should use modem mode and then use dhcp on your wan port.

     

    What model is the netgear?

     

    Also what is the ip of your desktop, Default gateway?  Also what is wan link manager saying in network?  The default firewall rule needs to have source rewritting enabled and the masq rule should be the ip of the wan port.

     

    JK

  • 0 in reply to john_kenny

    ok, so its a netGear 7000 (AC1900).  I have it set up in Router mode, I have Router, Bridge, ,  One cable is going to from want to P1 on Router (192.168.1.0)  Next I have they Lan on 172.16.16.16.)  My Macbook will connect will connect on Wifi when I set it to 172.16.16.8 / 255.255.255.0/192.168.1.1)   My wan link manager is showing IP4 Gateway 192.168.1.1 Interface port 2 192.168.1.252.  NAT MASQ status is green.   The rule is enabled for Masq rewriting. 

  • 0 in reply to MichaelCreamer

    Michael, if you want to have the same netgear ip network behind XG, you need to create a bridge. Use the wizard from XG admin page as described here:

    Regards

Reply Children
  • 0 in reply to lferrara

    When I put it in bridge mode the last time, the only way i could get in the Console gui is when I had a cable plugged in to the Lan Port, if I put both a lan and wan cable in, I could get to the lan but the internet was down.....and it still didn't pass traffic through the firewall.  it just showed 1m network attacks after I plugged back in to the lan. whats even more confusing to me when it was in bridge mode was why I couldn't get to the gui if I was "bridged". 

  • 0 in reply to MichaelCreamer

    Id change XG back to Gateway mode and then setup the LAN using 172.16.16.0 / 24 and add DHCP for it.  if you can get the the ui go through the wizard again from the drop down top right where user name is.

    Ive had similar setup working, router then XG.  It will need DMZ setup on the netgear to the WAN IP of xg but it will work that way.

    as i said the Mac had the wrong dg. if its ip is 172.16.16.8 / 24 it wont find the DG 192.168.x.x.  Its DG should be The XG lan IP.

    Hope that helps, bridge mode ive not actually use myself it depends on what u want to use XG for.  You hoping to use it as your main firewall or just some features?

    JK