Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

routing between two lan interface of L2 bridge mode

Dear Sir,


X1 connected to internet

X2 and X3 are in L2 bridge mode

X3 connected to cisco switch


all the pc and device are connected to X2 and accessing internet.

X2 = 192.168.1.254

Cisco switch vlan1 = 192.168.1.1

all the PC default gateway = 192.168.1.254


I want

destination = 10.10.10.0 255.255.255.0 next hope = 192.168.1.1 (Cisco swicth)

returning traffic from X3 destination 192.168.1.0 255.255.255.0 next hope = 192.168.1.254


routing :-

1.

source = any

destination = 10.10.10.0

service = any

standard route

interface = X3

gateway = 192.168.1.1


2.

source = any

destination = 192.168.1.0

service = any

standard route

interface = X2

gateway = 192.168.1.254


3.


source = any

destination = any

service = any

standard route

interface = X1

gateway = X1-IP


By above routing is it possible to divert traffic for 10.10.10.0 to cisco switch and get reply also

and also access internet.



Thanks and best regards

Category: Entry Level Firewalls
Reply
Tagged:

Answers

  • AjishlalAjishlal All-Knowing Sage ✭✭✭✭

    Hi @Ehsan

    I would like to know that, Your 10.10.10.0 /24 subnet is your internal VLAN which is configured in cisco switch? as per your above information, you have only 1 Internet connection (X1).

    In this case you dont need to create any next hope in cisco switch. instead that the default route is fine.( 0.0.0.0 0.0.0.0 192.168.1.254).

    Then you have to create routing policy in Sonicwall like as same below;

    Source: Any

    Destination: cisco vlan ( in your case 10.10.10.0/24)

    service : any

    interface: X2

    Gateway: your cisco switch IP( 192.168.1.1)

    Matric: 1

  • EhsanEhsan Newbie ✭

    Sir sonicwall firewall is connected to cisco switch via X3. And Cisco switch is connected to cisco router and via router user are accessing linux based application.

    When default gateway of the PC in lan is 192.168.1.1 than can access the application. But in this case in lan pc are not getting internet.

    When DG = 192.168.1.254 than lan pc are getting internet but no application.

    Also sir in your above reply interface should be X3 because X3 is connected to cisco, and what about returning traffic from application server. No need any routing for returning traffic since these are directly connected interface.


    Thanks and best regards.

  • AjishlalAjishlal All-Knowing Sage ✭✭✭✭

    @Ehsan

    brief me about your network structure otherwise its difficult to giveyou a solution. in your initial statement not mentioned the cisco router and the application server.

  • EhsanEhsan Newbie ✭

    Sir we do not have access to cisco side.

    Fact of the matter is that any pc with DG = 192.168.1.1, application is working in above scenario.

    Only problem is that now we have to give internet access to all the pc in above scenario, and application is already working.

    But internet is only working when DG = 192.168.1.254

    And application is only working when DG =192.168.1.1

    with only one route that is 0.0.0.0/00.0.0 X1-ip

    So i want to add more route to access internet and application both.

    We are not allowed to do any changes to cisco side.


    Thanks and best regards.

  • AjishlalAjishlal All-Knowing Sage ✭✭✭✭

    @Ehsan

    Try below step in your sonicwall and let me know.

    Navigate to Network-->Routing-->Route polices-->Add

    Source: Any

    Destination: cisco vlan group (address object group)( in your case 10.10.10.0/24 & 192.168.1.0/24)

    service : any

    interface: X2

    Gateway: your cisco switch IP( 192.168.1.1)

    Matric: 1

Sign In or Register to comment.