Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 2 subscribers
  • Views 3359 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Basic network routing problem

mathias.rockel
Hello!
I am trying to use the UTM9 in various Hyper-V based test labs and do have a basic network routing problem ... its probably something I overlooked, but I cant find it [:@]

In this basic test i just want the UTM to route between three independent networks, connected via their own network cards. I put a test client into each network, but they cannot even ping any other client. I can ping all three clients from the UTM.

As this lab is not connected to anything else but isolated from all other networks, I did not put any default gateway in the NIC config. For basic routing between locally connected networks this should not be necessary, right?

What am I missing here? See screenshots for config details.

Any help is highly appreciated! [:)]


This thread was automatically locked due to age.
Parents
  • 0
    You DO need a default gateway for all traffic leaving the local subnet. So you will also need to enter the UTM's IP-address for the respective interfaces into the clients.

    Besides that you need (a) firewal rule(s) to allow the traffic between the subnets.

    Edit: Just see the pictures and see that you already have the firewall rules, so that should be good. But I also notice you are using "strange" IP-addresses, they are all publicly routable (and possibly even distributed) IP-addresses. I would change them to RFC1918 IP-addresses to prevent possible routing errors later on.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Reply
  • 0
    You DO need a default gateway for all traffic leaving the local subnet. So you will also need to enter the UTM's IP-address for the respective interfaces into the clients.

    Besides that you need (a) firewal rule(s) to allow the traffic between the subnets.

    Edit: Just see the pictures and see that you already have the firewall rules, so that should be good. But I also notice you are using "strange" IP-addresses, they are all publicly routable (and possibly even distributed) IP-addresses. I would change them to RFC1918 IP-addresses to prevent possible routing errors later on.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?