Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5435
Views
0
Helpful
13
Replies

i have problem with layer 3 switch with xg sophos

Go to solution
Aosama
Level 1
Level 1

‎03-02-2018 02:20 PM - edited ‎03-08-2019 02:06 PM


how to fix configure layer 3 switch vlans with xg sophos


i have configuration in layer 3 switch is created 6 vlans :

my vlans ip address is:

vlan2 : 192.168.2.254 255.255.255.0 (servers)

vlan3: 192.168.3.254 255.255.255.0 (Workstations)

vlan4: 192.168.4.254 255.255.255.0 (AP)

vlan5: 192.168.5.254 255.255.255.0 (MGMT)

vlan6: 192.168.6.254 255.255.255.0 (VOIP)

i created (ip routing ) between them and ip route is (0.0.0.0 0.0.0.0 192.168.2.1) ,

(192.168.2.1) is GW for xg firewall sophos .

i can ping between vlans with each other but can't access to internet with vlans except vlan2(192.168.2.254) is can access to internet only , i using DHCP server is (192.168.2.10)

i don't know the reason , do the reason configuration in xg firewall sophos rather configuration layer 3 switch , what i can doing.

anybody can help me

 

Thank's

Labels:
Preview file
172 KB
Preview file
173 KB
Preview file
376 KB
0 Helpful
3 Accepted Solutions

Accepted Solutions

Go to solution
Martin Carr
Level 4
Level 4
In response to Aosama

‎03-03-2018 05:50 AM

This is incorrect and this route should be removed.

On your FW you need to add the routes for the networks.

For example 192.168.3.0 255.255.255.0 192.168.2.254. 

In addition, you may or may not have to perform NAT configuration.

 

Martin

View solution in original post

0 Helpful

Go to solution
Martin Carr
Level 4
Level 4
In response to Aosama

‎03-03-2018 11:50 AM

No, further down you can see a 'Routing' section and it is in here that this would be configured.

 

Martin

View solution in original post

0 Helpful

Go to solution
Deepak Kumar
VIP Alumni
VIP Alumni
In response to Aosama

‎03-03-2018 09:46 PM

Routing-->Static Routing--->Add button

 

Regards,

Deepak Kumar

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!

View solution in original post

0 Helpful
13 Replies 13

Go to solution
acampbell
VIP Alumni
VIP Alumni

‎03-02-2018 03:58 PM

Hi,

On your fireall you will need to add a static route for your vlan subnets pointing at
192.168.2.254 or what ever the vlan 2 address is on your layer 3 switch

 

Regards, Alex. Please rate useful posts.
0 Helpful

Go to solution
Aosama
Level 1
Level 1
In response to acampbell

‎03-02-2018 11:48 PM

Maybe you can clearly what do you mean , 

or you mean i should doing command (ip route 192.168.2.0 255.255.255.0 192.168.2.1) 

i already did that from before , or you mean set on vlan2 itself for examble 

switch(conf t)# int vlan 2

switch(conf t)# ip route 192.168.2.0 255.255.255.0 192.168.2.1

please i need clearification .

0 Helpful

Go to solution
Deepak Kumar
VIP Alumni
VIP Alumni
In response to Aosama

‎03-03-2018 02:56 AM

Not only your switch. You have to add the routes on your XG firewall also for all vlans. 

 

Regards,

Deepak Kumar

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!
0 Helpful

Go to solution
Aosama
Level 1
Level 1
In response to Deepak Kumar

‎03-03-2018 03:05 AM

Yeah . I created sub interface for vlan 3 and network definition  but no solution . You can write how to add route vlans because maybe there missing step . Thank you

0 Helpful

Go to solution
Martin Carr
Level 4
Level 4
In response to Aosama

‎03-03-2018 05:50 AM

This is incorrect and this route should be removed.

On your FW you need to add the routes for the networks.

For example 192.168.3.0 255.255.255.0 192.168.2.254. 

In addition, you may or may not have to perform NAT configuration.

 

Martin

0 Helpful

Go to solution
Aosama
Level 1
Level 1
In response to Martin Carr

‎03-03-2018 09:46 AM

you mean add network on (source network and Devices) in firewall section  , I'm put attached picture for clarification for you 

Preview file
236 KB
0 Helpful

Go to solution
Martin Carr
Level 4
Level 4
In response to Aosama

‎03-03-2018 11:50 AM

No, further down you can see a 'Routing' section and it is in here that this would be configured.

 

Martin

0 Helpful

Go to solution
Aosama
Level 1
Level 1
In response to Martin Carr

‎03-04-2018 09:09 AM

Thank you  Martin Carr Also 

 

0 Helpful

Go to solution
Deepak Kumar
VIP Alumni
VIP Alumni
In response to Aosama

‎03-03-2018 09:46 PM

Routing-->Static Routing--->Add button

 

Regards,

Deepak Kumar

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!
0 Helpful

Go to solution
Aosama
Level 1
Level 1
In response to Deepak Kumar

‎03-04-2018 09:06 AM

Thank alot , My problem's is resolved .

Thank you  

Deepak kumar 
and 
0 Helpful

Go to solution
Deepak Kumar
VIP Alumni
VIP Alumni
In response to Aosama

‎03-04-2018 10:11 PM

I am happy to know that your issue has been resolved. 

 

Regards,

Deepak Kumar

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!
0 Helpful

Go to solution
Aosama
Level 1
Level 1
In response to Deepak Kumar

‎03-05-2018 02:32 AM

Thank you

0 Helpful

Go to solution
abdulmoiz696292339
Level 1
Level 1

‎01-05-2020 05:28 AM

Your first try is OK.

The def. Gateway must be placed within the same L3-network (Subnet) as the client.

So the L3-Switch need 192.168.1.254 as gateway within "tranfer-Subnet"

Seems there is a configuration-problem at the l3-Switch.

Which device do you use? can you post the L3-Switch Configuration?

moiz

 

0 Helpful
Customers Also Viewed These Support Documents