Hello everyone,
GEAR: L2 switch NETGEAR GS108T (8port)
Mini pc PFSENSE box (2 port)
Mini pc SOPHOS UTM (2 port)
SETUP:
Inernet---pfsense---sophosUTM---switch
switch port configuration(T v1 v2 v3 v4 v5 v6 v7)
T=Trunk port(all vlans are carried though this port and are tagged)
v1-v7=VLAN ID'S(VLAN 3 and 4 are tagged server is configured with 802q interface etc...)
Pfsense=the firewall is responsible for all the inter vlan routing and has the same vlans configured on its internal interface
Problems:
After creating my bridge, I convert the interface to VLAN ID 1 and give it a default route--->ip address of pfsense corresponding VLAN 1(192.168.1.1).
Note that the administration interface for SOPHOS is now on VLAN 1...
At this point, all traffic is routed though this VLAN 1 (including other vlans v2,v3...) but VLAN 1 is the only VLAN that is being filtered by SOPHOS UTM.
(I have added all the necessary steps to permit ALL in firewall and web filtering and application control)
SOPHOS firewall: any to any to any
SOPHOS WEB FILTER: ANY
When I add another VLAN(ex VLAN 2) I cant ping the corresponding gateway on pfsense box ex 192.168.2.1, BUT pfsense can ping the interface on vlan 2 sitting on the SOPHOS UTM box
I tried adding static routes; it didn't work.
Basically, I want ALL my vlans to pass though the transparent bridge and get filtered on their way out on the UTM box.
Thx for your help
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.