Hi,
w've got a real difficult routing problem (i know how to handle but the sophos utm, don't do it)
We've got 2 External Interfaces (not multipath - just two VLANs (165 and 240)). One Interface got the Net 82.211.0.x/24 the other got the net 84.200.2.x/24.
On the other side we also got two internal network-devices (also different vlans (165 and 240)) and on this networkdevices are many subnets configured. 10.0.0.x is on vlan240, 10.1.0.x - 10.6.0.x VLAN240
What we do is, configureing the firewall to route the traffic to the internal servers.
Now the main problem:
if server A is in VLAN1 and is masqueraded to 82.211.0.9 sometime it happens that the server isn't accessible from the Internet. What i figured out is, that the traffic is not put throught the extenal interface which has got the 82.211.x vlan. After a few minutes the traffic is routed again through the correct interface and the server is accessible again.
What i did to get this work is setting up a static route and route all traffic from server A to the external-interface it has to go. But. If i do this, the server a isn't accessible from internal network anymore. I setup a new roule to route all traffic from server a to internal networks on the internal-interface but nothing changed. Server is still not accessible from the internal network till i disable the first route.
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
