Hello
I just (partially) installed an XG105. Most things work correctly but I'm having trouble getting a policy routing rule to work.
This is the situation/problem
VLAN10 (10.10.0.0 / 255.255.0.0)
VLAN40 (10.40.0.0 / 255.255.225.224) range determined by larger VPN network (10.131.17.209(GW) - 10.131.17.221)
VLAN10 are normal clients
VLAN40 is VOIP telephony and needed for some applications
I would like to allow 2 clients in VLAN10 to be able, when using those application, to use GW 10.131.17.109. In the Zyxel I had a policy routing rule like this:
Incoming: VLAN10
source range: 10.10.199.1-10.10.199.5
destination: 10.131.16.3 (application server on the VPN network)
service: any
source port: any
Next-hop: VLAN40
SNAT: outgoing interface
I tried to mimic this policy but I can't seem to get it to work. Here are my current settings:
Policy route:
- inc interface: port1.10 10.10.100.254
- source ntw: ip range 10.10.199.1-10.10.199.5
- Destination network: Olympus webserver ip 10.131.16.3
- services: any
- Gateway
- IP 10.131.17.209
- interface 1.40-10.131.17.210
- default NAT policy: masq with ip 10.131.17.209
Firewall rules:
- Source zone: LAN
- Source ntw and devices: VLAN40_NETWORK / VLAN10_NETWORK
- dest zone: LAN
- Dest ntw: VLAN40_NETWORK / VLAN10_NETWORK
- services: any
- identity check: off
Any help would be greatly appreciated!
This thread was automatically locked due to age.
