USG FLEX 500 and Two SUBNET Interface
Freshman Member
I have a zyxel USG FLEX 500 firewall with lan1 interface (192.168.0.230 - DHCP managed by Active Directory) lan2 interface (192.168.33.230 - DHCP Disabled).
Any machine I set in the second subnet can only communicate with the firewall and has no internet.
What configuration did I forget?
All Replies
-
If your setting up a device with static IP on LAN2 for it to get to the internet you need to set the gateway and DNS both can be to the LAN2 interface gateway.
If ping to 1.1.1.1 works but not DNS you need to have a firewall rule from LAN2 to zywall or if DNS works but timeout to 1.1.1.1 you need from LAN2 to WAN
0 -
If I set the network card like this:
I have no network or internet, I do not understand what it is that can block.
I also tried setting a routing but no luck
0 -
Is "Enable IP/MAC Binding and DHCP Enforcement" checked for LAN2?
0 -
Nope
0 -
make routeing rule
incoming LAN2
next hop WAN
check your on the right port and zone is set to LAN2
0 -
I managed to configure everything but from lan2 I can ping lan1 but not vice versa
there is no layer 2 isolation
0 -
sovled
0 -
A static route? Should not be needed…
is "Use IPv4 Policy Route to Overwrite Direct Route" checked?
0 -
no is not selected
0
Guru Member
Categories
- All Categories
- 415 Beta Program
- 2.5K Nebula
- 152 Nebula Ideas
- 102 Nebula Status and Incidents
- 5.8K Security
- 305 USG FLEX H Series
- 284 Security Ideas
- 1.5K Switch
- 77 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.5K Consumer Product
- 255 Service & License
- 396 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.7K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 87 About Community
- 77 Security Highlight
