Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 4 subscribers
  • Views 6994 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Help setting up multiple subnets

LarryBeall

I see this is a common question and believe I have tried most if not all the information I found, but I am truly struggling here.  I currently have one net setup on eth0 covering 192.168.1.0/24 and another net setup on eth2 for 192.168.2.0/24.  When I attempt to ping anything in the 192.168.2.x network from 192.168.1.x it works as expected.  I can even access services in the 192.168.2.x space from 192.168.1.x.  From 192.168.2.x I can get to the internet and ping the gateway for 192.168.1.x, but I can not ping or access anything beyond the default gateway (ie: 192.168.1.13).  Below are images of my interface and relevant firewall rule setup.  If anyone can point me in the right direction I would greatly appreciate it.

Interfaces:

Firewall Rules:



This thread was automatically locked due to age.
  • 0

    Hi Larry,

    What is the reflection of packet communication in TCPDUMP? Try to ping an endpoint in 1.x network from 2.x and capture the communication. Let's verify if there is any incorrect NATing which causes this. Also, create separate rules as Home (Network) - ANY - Internal (Network) and Internal (Network) - Any - Home(Network).

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0

    Also, please show a few relevant lines from the Firewall log.  Alone among the logs, the Firewall Live Log presents abbreviated information in a format easier to read quickly.  Usually, you can't troubleshoot without looking at the corresponding line from the full Firewall log file.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to sachingurung

    I'm fairly novice at this and am not sure what exactly to run for this. Is there a good resource to show me the steps to get the tcpdump info you are looking for?

  • 0 in reply to BAlfson

    That's what's killing me. There are no entries in the live log for either machine. Nothing is being dropped at all pertaining to these two networks.

  • 0 in reply to LarryBeall

    "I can not ping or access anything beyond the default gateway (ie: 192.168.1.13)" - I'm not sure what that means.

    Also, look at #3 and #3.1 in Rulz - anything there seem like a candidate?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Cookie Information Banner