Help setting up a USG FLEX 100H

xsentinel
xsentinel Posts: 18  Freshman Member
First Comment

So I'm going to try to set up this thing and give it a proper try before making a decision. It looks daunting but here is what I want to do and perhaps some people in here can help me set it up the way I would like it to be.

  1. I want to change the address of the 100H (LAN side) from 192.168.168.1 to 192.168.0.1.
  2. I want to set up 2 LANs so that I will have LAN #1 with 192.168.0.x and LAN #2 will be 192.168.2.x.
  3. I want these LANs to be completely separate and not able to talk to eachother at all.
  4. I want to set up a few of my own rules.

This is how I have my current USG40 set up and I love it. If I can get this config over to the new box I'll be a happy camper. So far I'm reading the manual and so far I have some ideas but I'm not sure of what I'm doing so I'll post back as I come up with things and hopefully someone here can tell me if I'm right or wrong.

«1

All Replies

  • PeterUK
    PeterUK Posts: 3,399  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary
    edited October 24

    Yep you be able to do that the key thing about the the model you have is ports are configurable no port is WAN or LAN you can make any port WAN or LAN.

    Setup what Port you want named before you add rules if you want a interface to be LAN1 and LAN2 from say Ge3 and Ge4 you can do that you may need to change over a port login setup then remove interface by removing references setup the a new interface name say LAN1 with what port(s) then switch over and then setup Zones for LAN1 and LAN2 for the interfaces

    Then for Security policy you can disable all but LAN_to_Device and make your own for LAN1 to WAN and so on

  • xsentinel
    xsentinel Posts: 18  Freshman Member
    First Comment

    That's great I appreciate that, but I'm not quite sure I understand the process you described. Let's start with … what should I do first?

    Should I change the IP address of the LAN of the router first?

    Also, It looks like the unit has 1 LAN zone with lan1 and lan2 on it. I'm guessing that this means that traffic can go back and forth between them. So I'm guessing that the next thing to do would be to create a new zone and call it LAN2, then remove the ports I want from lan2 that they have and add them to the LAN2 zone that create?

  • PeterUK
    PeterUK Posts: 3,399  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary
    edited October 24

    On the FLEX200H its Ge3 and Ge4 if your interface shows LAN1 then just change the IP and log back in.

    make new zone LAN2 then change LAN2 interface zone to that

  • xsentinel
    xsentinel Posts: 18  Freshman Member
    First Comment

    Sorry I took so long but, I tried to change the LAN address and it won't let me. I went to Network settings - interface - internal - ge3 and clicked edit. Under "interface properties" I changed the IP/Network Mask from 192.168.168.1/24 to 192.168.0.1/255.255.255.0. But the "apply" button is greyed out. I can't click it. Do I have to change something else first?

  • PeterUK
    PeterUK Posts: 3,399  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary
    edited October 29

    likely the DHCP settings to match the new subnet change?

    You need to put in the IP and subnet like:

    192.168.0.1/24

  • xsentinel
    xsentinel Posts: 18  Freshman Member
    First Comment

    Sorry, I should have said that I tried that too. 192.168.0.1/24

    Did not work either. The apply button is still grayed out.

  • PeterUK
    PeterUK Posts: 3,399  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary
    edited October 29

    Is their some red text saying why?

    are you seeing

    "One of the ports has been bound another ethernet interface, please choose another port."

  • xsentinel
    xsentinel Posts: 18  Freshman Member
    First Comment

    Nope. It all looks fine and correct but the apply button is just grayed out. Kind of like it's not complete or I input wrong info or I haven't filled something in, but there are no errors or red text at all.

  • PeterUK
    PeterUK Posts: 3,399  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary

    Post a screenshot

  • xsentinel
    xsentinel Posts: 18  Freshman Member
    First Comment

Security Highlight