This article explains how to create VLAN on a Sophos Firewall.
In this model, I divide the network into 2 VLANs. It's vlan 20 and vlan 30. 2 VLANs 20 30 have been configured with subinterfaces on Port C of Sophos to be divided among departments.
Step 1 : Add VLAN on Sophos Firewall
Go to "Network" . Click "Add Interface" and then select "Add VLAN".
Physical Interface: The port the VLAN is connected to
Zone: LAN
VLAN ID: The VLAN tag for this virtual interface
IP Assignment: Static.
IPv4/Netmask: Configure the IP subnet and mask for this VLAN
Step 2 : Add DHCP Server
Go to "DHCP", then click "Add" button.
Interface to use for the DHCP server, ranges from which the DHCP server allocates IP addresses to clients.
After the VLAN has been created successfully, create a Policy that allows VLANs to access the Internet.
Step 3 : Create a Policy
Go to "Rules and policies" > "Add firewall rule" > "new firewall rule".
Rule name : VLAN20-to-internet
Action : Accept
Rule position : Top
Rule group : None
Source zones : LAN
Source networks and devices : IP subnet of your VLAN
During scheduled time : All the time
Destination zones : WAN
Destination networks : Any
Services : Any
Turn on NAT.
Click "Create linked NAT rule".
Translated source (SNAT) : MASQ
On the Cisco switch, I have preconfigured the necessary VLANs. You can now browse the Internet using a computer connected to vlan 20.
I hope this article helped you create VLAN on a Sophos Firewall.
Facebook: https://www.facebook.com/routerbest
Twitter: https://twitter.com/routerbestcom
