How do you connect 3rd party wireless router and have it function as AP

When you say "DHCP server enabled", do you mean you have DHCP enabled on the router you wish to use as your AP? If so, and you also have DHCP enabled at your UTM then this may be your issue. Turn off DHCP at the router and only use DHCP at your UTM otherwise you'll end-up in a double-NAT situation.

This FAQ may help...

community.sophos.com/.../21968

Yes, I have both DHCP enabled, at Firewall, and router (AP). Will this be an issue if I've connected the connection to the WAN port of the router (AP)? Not connected to the LAN port.

If you enable DHCP on your router, your router will try to assign IP addresses to wireless devices instead of having your UTM assign IP addresses. You want to disable DHCP on your router.

Hello NashBrydges,

I used to have the setup you mentioned before. I noticed surfing is spotty, some pages won't load. It seems something is conflicting. I changed the router(AP) to 192.168.5.1, and plugged it's WAN port to my switch. I noticed surfing was free and easy. Every web page would load quickly. The only reason I'm changing settings now is as of this moment, wireless devices connecting to 192.168.5.1 (dhcp enabled) can't ping the wired network devices, in 192.168.1.x IP. So I moved the router(AP) to the back of the Sophos UTM. That's when problem started.

Check out BarryG's definitive commentary on this issue:
community.sophos.com/.../21968

Cheers - Bob

Hello BAlfson,

Initially, I'm already using the guide that is setup to the same network. I have 2 APs, both following the guide you've shown. 1 is using 192.168.1.2 as IP, the other is using 192.168.1.3.

I noticed that while surfing using laptop, I don't have any issues when connected to either consumer APs. But when Cellphones, tablets are connecting to the APs, Android, IOS, both experience page not found, and have to be reloaded several times before the page actually appears. Loading of page is also slow. That's when I decided to move it to another network, naming it 192.168.5.1, and connecting it to the switch within my network. IOS and Android devices surf quickly, without any hitch. Only problem is, it cannot see printers, scanners in my original network, 192.168.1.x.

I would pretty much like them to be on the same network, with same series of IPs, but I don't know why I need to reload several times. I followed the instructions to the letter. Could it be the 2 APs are conflicting with each other? Is it a DNS issue? But why doesn't laptop encounter the same problem?

What happens if you put them in the same subnet but assign each a different channel?

Cheers - Bob

I assigned one to channel 1, the other to channel 11, results are similar.

Somehow, I feel when I use 1 and have it on 192.168.5.x, the surfing really works fast. I don't know how am I to check whether there are packets dropped? Or is it a DNS issue? Hope you guys can teach me how to isolate this.

Hello All,

I finally put it on a different subnet. I followed the steps below:

1. decide if you want the wireless network to be part of your LAN, or a new network/DMZ.
If a new network, setup a new interface (or use a VLAN) on the UTM.
Setup the UTM's DHCP & DNS server for the network, and configure Masquerading, firewall rules, desired proxies, etc.


I was just wondering how come my experience is not that great by putting it on the same subnet? Speed is way different. No more reloadings. Any idea why this is the case? I'm also wondering if using XG will have the same problem?

If they work on different subnets, sound like you have a your interfaces confused. Both APs should work on the same subnet providing they are connected to the same interface on the UTM.

You will have the same issue if you use XG, it is not UTM/XG issue but a user configuration issue. You shouldn't be using the WAN port on your APs but a LAN port if they are on the internal network.