Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 8 replies
  • Subscribers 5 subscribers
  • Views 13679 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Masquerading not working properly?

Paolo Lat

Hi There,

 

I recently configured a new interface for a new vlan which is 10.70.0.1/28 and configured a Masquerading rule for this Network to use one of our public IP addresses. But it seems that the rule is not taking an effect. 

I had 2 interfaces configured for public IP address and when I configure the new vlan (10.70.0.1/28) to publicIP1 it would show instead publicIP2. Any Ideas? 



This thread was automatically locked due to age.
Parents
  • +1

    Hi Guys,

     

    Thanks for the replies!!

     

    I think the problem was there was already a multipath rule existing and I didn't consider that, so I had to create a new multipath rule for the new VLAN and that points out to the right public IP. 

     

    I inherited the firewall so I'm kinda confuse why he placed this kind of rules. I think I would only use this on extreme occasions, unless they're really important just for internal going out.

     

  • 0 in reply to Paolo Lat

    I would simplify those rules, Paolo...

    Create a Network Group "Corporate" containing "IT (Network)" and "Internal Corporate (Network)" and replace rules 1 and 2 with:

    1: Corporate -> Any -> Any : External Corporate Interface

    Probably, all of the rest of the rules can be replaced by:

    2: Any -> Any -> Any : External Students Interface

    Like all numbered lists in WebAdmin, rules are processed in order and the first rule that matches traffic means the rest are skipped.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Will do! 

     

    Thanks for the reply everyone!

Reply Children
No Data
Unfiltered HTML