TZ400 - LAN Subnets
Neta
Newbie ✭
I am trying to create a new subnet on TZ400 without any router or additional device. I want all traffic flow between these 2 subnets. The DHCP scope is managed on the windows server.
Environment :
X0 - LAN - 10.10.0.1, 255.255.255.0
X1 - WAN
Creating a new LAN subnet on X3, 10.10.1.1, 255.255.255.0
Set up the rules, LAN to LAN.
But it's not working, assigned a windows pc, static IP from the new subnet and it's not pulling in the Internet nor seeing any pcs on the first subnet.
Thanks for help.
Category: Mid Range Firewalls
0
Answers
@Neta both Interfaces X0 and X3 are members of the Zone LAN and Interface Trust for that Zone is enabled? If not you have to add additional Access Rules.
--Michael@BWC
Correct both are members of LAN zone.
@Neta is the "No link" Status on X3 temporary? You cannot ping any of the PCs in the X0 LAN from the X3 LAN?
Because of Internet, did you checked your LAN -> WAN Routes that it covers your X3 subnet as well?
--Michael@BWC
We don't have any additional device to set up additional lan so noting is plugged into X3 port, it is working as an independent.
@Neta if X3 is not connected IMHO that cannot work, because the Firewall is expecting 10.10.1.0/24 via X3.
--Michael@BWC
Went by this discussion,
https://networkengineering.stackexchange.com/questions/14672/using-sonicwall-to-route-between-subnets
I stand by what I wrote above, 10.10.1.0/24 is assigned to X3 and need to be connected therefore. I did not read the whole discussion that you mentioned, but this caught my eye:
You may need more switches to deal with the additional hosts on your second subnet (LAN_2).
You should create a VLAN and attach X3 to it and put all the devices which belong to 10.10.1.0/24 into that VLAN, everything else would I describe as experimental.
--Michael@BWC
Thanks, got it. How else can I create a second subnet with just SonicWall?
--Michael@BWC
Will this work?
https://www.blizzardcomputers.com/multihome-lan-sonicwall/
Why not just following the Thread I linked above? It includes the official KB-article from SNWL around that topic.
After reading that and following the steps you can compare it with other sources in case it does not work.
--Michael@BWC