On the Sonicwall I had several interfaces configured using their method and it worked without problems.
The IP's are all in the same /27 subnet. LAN on Port 1, WAN on Port 2, DMZ on Port 3 and 3 more VLAN tagged DMZ, DMZ on port 4, DMZ on port 5
But I cannot get any traffic to show on the xg using the packet capture listening on any of the DMZ ports. Nor can the ISP see any traffic on any of the other IP's.
In reading through this site and KB articles, I think I need to blow this all away and redo it creating a bridge interface? Then recreating all my firewall rules? I started to do this yesterday, and as soon as I created the bridge it removed the WAN interface configuration, deleted several firewall rules and left everyone without internet until I undid it. So I'm a bit weary go down that road again.
I talked with support who was getting rather irritated at me, they were telling me that I can't have multiple interfaces on the same subnet. And that I needed to create aliases for the DMZ's I'm creating. He sent me this KB https://community.sophos.com/kb/en-us/126541 But if I do so then I can't associate the IP to a physical or VLAN interface (port) only to the WAN port- then I'd have to create a firewall DNAT rule, but then this means I would have to then place the public facing servers I have the in the DMZ's on to a LAN connection. I understand I could break down the WAN into a couple /29 subnet's but I'm still unclear on how to configure the other DMZ interfaces to route traffic accordingly to the interfaces.
Can some one please clarify how this should be configured?
This thread was automatically locked due to age.
