I have successfully setup two different wireless networks (IP and SSID's) both using Separate Zones. My ASG is the DHCP server for both of these networks. I did not use the default configuration setup as I wanted to create my own rules and whatnot.
One wireless network is for a "guest" network with only DNS, HTTP, HTTPS and various VPN traffic allowed. This works fine.
The other wireless network is for an Internal wireless network (RADIUS authentication; which works just fine). In creating various services and whatnot, I created an allow rule for TCP port 9100 (HP JetDirect) for printing to a network printer. However, it is not working.
I have created the necessary allow rule (turned on Logging) and I do not see it being allowed. However, on the laptop in question, I am running WireShark and the ASG is telling the laptop (ICMP - Port unreachable).
If I connect to our current wireless solution (internal and behind the ASG), it works fine. I can print.
I have tried disabling IPS, Port Scanning, and TCP/UDP flood protection to no avail for troubleshooting. Any other thoughts or suggestions??
Guest User!
You are not Sophos Staff.
