Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 0 replies
  • Subscribers 26 subscribers
  • Views 3201 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SophosXG125 - Intervlan Routing - Allow broadcast to x.x.x.255 between vlan

Federico Boldori

Hello,

i have this nasty problem

Sophos XG125: Port1-2 are in a Group for VLAN10 Access, Port 3-4 fort VLAN20

VLAN10 (10.1.10.0/24) in server, VLAN20 (10.1.20.0/24) is Workstation.

I have a route in firewall for intervlan routing. Simply From LAN,ANyHost - TO LAN,Anyhost and AnyService are permitted.

Problem: one application (client-server thing) that resided on Workstation VLAN20 PCs is sending a broadcast message to 10.1.10.255 on port 2638 UDP.

The application is trying to communicate with the server that is on a win 2012r2 machine inside 10.1.10.0/24 network.

The traffic is dropped by the firewall becouse it hit the latest route (to drop every traffic that is not matched by any previous policy)

Any hint?? I've tried to make a rule to allow from LAN, Any network, to LAN, Any networkd and all udp traffic allowed route but the packets to 10.1.20.255 are still blocked..



This thread was automatically locked due to age.