This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to set up two XG firewall ports to serve two independent LANs from one WAN?

I am graduating from an ASG120 running UTM 9.5, which is end of life, to an XG 125 and have no experience with XG configuration. Two organizations in the same building share the WAN connection but want independent LANs. Each LAN will have its own DHCP server addressing different subnets: 192.168.1.x & 192.168.2.x. The LANs do not need to communicate. I want to use the XG as a router to make the split by doing the following.

Assign a physical port the the WAN zone.

Create Zones ORG1 & ORG2, each with type LAN.

Assign a physical port to each Zone (ORG1 & ORG2).

Define the same rules and policies for WAN-ORG1 and WAN-ORG2. Would defining rules and policies for WAN-LAN, impose them on both zones?

Will this work?

I also want to segregate SSL VPN users to either ORG1 or ORG2. How can this be done?

This thread was automatically locked due to age.

Parents

0 rfcat_vk over 7 years ago

Hi,

you will need to create firewall rules for each internal network with their own nat rules. Becareful with the IPS rules they are system wide as far as DOS protection goes.

You can setup different policies for each network.

You have to create custom reports for each network.

SSLVPN, I do not know.

Ian
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 rfcat_vk over 7 years ago

Hi,

you will need to create firewall rules for each internal network with their own nat rules. Becareful with the IPS rules they are system wide as far as DOS protection goes.

You can setup different policies for each network.

You have to create custom reports for each network.

SSLVPN, I do not know.

Ian
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data