Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 2 subscribers
  • Views 5088 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos unable to route between subnets?

AlanMayer
I've got three internal subnets that are attached by two different ports on the UTM, one is directly connected (our internal LAN) and the other two are at a remote location that is connected via router and microwave network) I cannot get both networks to communicate with each other. I created a gateway route for 10.0.0.0/8 to gateway 10.220.255.1 and 192.168.0.0/16 to gateway 10.220.255.1. I am able to ping anything on those networks and 10.220.255.1 from the UTM but not from my internal network 10.50.119.0/24. I have a firewall created for any any. My first call to tech support had me create a masquerading NAT rule but that only allows my 10.50.119.0/24 network to reach the C B networks and not vice versa. My second call to tech support wanted me to create a DNAT rule and a policy route. I guess I'm not understanding why NAT would be needed for any of this. Why is this simple routing not working?


This thread was automatically locked due to age.
Parents
  • 0
    I thought routing took the most specific route it matches?

    Yes, but you aren't causing WebAdmin to write correct routing instructions for the iptables backend in the UTM.  The UTM is much more elegant and powerful than Untangle - it's not Untangle.  Like I said, if a NAT rule makes it work, you have a configuration error.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    I thought routing took the most specific route it matches?

    Yes, but you aren't causing WebAdmin to write correct routing instructions for the iptables backend in the UTM.  The UTM is much more elegant and powerful than Untangle - it's not Untangle.  Like I said, if a NAT rule makes it work, you have a configuration error.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?