Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 41 replies
  • Subscribers 28 subscribers
  • Views 106610 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Firewall Traffic/Rules

MichaelCreamer

I am now having an issue with my firewall rules.  Traffic does not seem to be passing through them.  I also don't see any sessions.  I have it set up in gateway mode, and port 2 directly connected to my NetGear Router.  I see the gateway is up and I can ping out.  Little help please

 



This thread was automatically locked due to age.
Parents
  • 0

    are you using your netgear in modem mode or router mode??

     

    Ideally u should use modem mode and then use dhcp on your wan port.

     

    What model is the netgear?

     

    Also what is the ip of your desktop, Default gateway?  Also what is wan link manager saying in network?  The default firewall rule needs to have source rewritting enabled and the masq rule should be the ip of the wan port.

     

    JK

  • 0 in reply to john_kenny

    ok, so its a netGear 7000 (AC1900).  I have it set up in Router mode, I have Router, Bridge, ,  One cable is going to from want to P1 on Router (192.168.1.0)  Next I have they Lan on 172.16.16.16.)  My Macbook will connect will connect on Wifi when I set it to 172.16.16.8 / 255.255.255.0/192.168.1.1)   My wan link manager is showing IP4 Gateway 192.168.1.1 Interface port 2 192.168.1.252.  NAT MASQ status is green.   The rule is enabled for Masq rewriting. 

  • 0 in reply to MichaelCreamer

    Michael, if you want to have the same netgear ip network behind XG, you need to create a bridge. Use the wizard from XG admin page as described here:

    Regards

  • 0 in reply to MichaelCreamer

    OK so You dont need to bridge the router and XG, have you enabled DHCP on Sophos XG yet for the LAN network??  You need to set that up to give devices addressing, make sure you tick the option Use interface as default gateway.

     

    Your macbook has the wrong Default gateway so it wont get internet.  The DG of the LAN devices has to be the IP of the LAN port on XG so 172.16.16.16 in this case.  You should really change the LAN IP anyway to something like 172.16.16.1.

    If you want to test this theory just change the Default gateway on your Macbook to 172.16.16.16 do that and you should get net.

     

    JK

Reply
  • 0 in reply to MichaelCreamer

    OK so You dont need to bridge the router and XG, have you enabled DHCP on Sophos XG yet for the LAN network??  You need to set that up to give devices addressing, make sure you tick the option Use interface as default gateway.

     

    Your macbook has the wrong Default gateway so it wont get internet.  The DG of the LAN devices has to be the IP of the LAN port on XG so 172.16.16.16 in this case.  You should really change the LAN IP anyway to something like 172.16.16.1.

    If you want to test this theory just change the Default gateway on your Macbook to 172.16.16.16 do that and you should get net.

     

    JK

Children