Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 2 subscribers
  • Views 19932 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Need help adding static route

ccity
Hello, I am hoping you can help I am new to Sophos.  I am replacing an Asus wireless router which had  static route created and working fine.  I have my Sophos network and I want to route between it and a second network that is connected via a Verizon (Actiontek) router.  Here is my current configuration:

Sophos INT: 192.168.2.1/24 (plugged into 24 port switch)
Sophos WAN: (DHCP) FIOS

This is working fine for clients on the 192.168.2.0 network to get out to the Internet.  

FIOS INT: 192.168.0.1/24
FIOS WAN: 192.168.2.2 (plugged into 24 port switch)

The Sophos box can ping the 192.168.2.2 interface.  

The old ASUS router had a static route added to get back to the FIOS network as follows

Network 192.168.0.0 Netmask 255.255.0.0 Gateway 192.168.2.2 Metric 1 Interface LAN

I tried creating what I thought was the same static route in Sophos

Gateway Route
Network "FIOS 192.168.0.0/24"
Gateway "FIOS 192.168.2.2"
Metric 5

That did not work so I tried adding various firewall rules but that also did not work.  

Does anyone have any suggestions on what I can try?


This thread was automatically locked due to age.
Parents
  • 0
    There are no dumb questions....
    You have to make firewall rules for every kind of traffic that needs to be allowed, since otherwise it's just disallowed, so yes, you will need a rule for FIOS to your internal network (and vice versa) if they need to be able to communicate with each other. If they are both "trusted" you could add FIOS -> Internal -> Any -> Allow and Internal -> FIOS -> Any -> Allow.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Reply
  • 0
    There are no dumb questions....
    You have to make firewall rules for every kind of traffic that needs to be allowed, since otherwise it's just disallowed, so yes, you will need a rule for FIOS to your internal network (and vice versa) if they need to be able to communicate with each other. If they are both "trusted" you could add FIOS -> Internal -> Any -> Allow and Internal -> FIOS -> Any -> Allow.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?