I have a WRT610N, running DD-WRT, as my WAP connected to my Sophos UTM. I configured a virtual wireless interface on my WAPP to separate trusted and untrusted host traffic. Logical diagram follows:
Network2.png
I have eth1 configured with two virtual interfaces; VLAN2 (trusted) and VLAN5 (untrusted).
interfaces.png
I modified the default firewall rules for DNS, Email, and web to include the two virtual interfaces.
firewall.png
I logged into the UTM console and ran tcpdump to verify I was receiving only VLAN2 and VLAN5 tags on eth2. Both subnets get IPs via DHCP from the UTM but only VLAN 2 can reach the internet. VLAN5 is denied DNS traffic and cannot resolve any address. The FW log follows:
fwlog.jpg
I am at a loss on how to resolve this. It seems like the FW rules are being ignored for only one of the virtual subnets.
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
