Knowledge Base

Bitte , um Beiträge und Themen zu erstellen.

Wireless separate zone behind a RED 15W - issues

https://community.sophos.com/utm-firewall/f/wireless-security/81634/wireless-separate-zone-behind-a-red-15w---issues

We currently have a Sophos SG310 running UTM 9.402-7. We have a remote location with a RED 15W in Standard/Unified mode (so all traffic is tunneled to the UTM, internal and external). I am trying to add another wireless network in a separate zone so I can control its traffic separately from the other wireless network. I can connect to the new wireless network without issue and I receive an IP from the DHCP server running on the UTM. I can also resolve DNS and ping out to the internet from the wireless network (ping is low and stable, no observable packet loss), but when trying to load a website, traffic is passing so slowly that the page pretty much never loads. I assume at least some traffic is passing because it never really times out. The browser just sits there like it's waiting for the server. Normally if you have no traffic passing, it's going to timeout within 30 or 60 seconds. That doesn't seem to happen. The other wireless network that is bridged to the LAN works fine.

 

FIXED!

After a month of working with Sophos technical support, didn't get anywhere with this, they were completely stumped so I battled on with this on my own and nailed it, well for my customer anyway.

I had to set the MTU size of wireless network which I wanted to isolate to 1100 from 1500 and alter the primary DNS of the DHCP scope on the UTM for this wireless network to Google DNS from the UTM's own one even though I had allowed it to query DNS engine on there.

What is really odd is some sites were working fine before this change but others weren't. The sites that didn't work still functioned fine for a wifi network set to AP Bridge to LAN, it was only separate LAN that broke.

Very odd but hope this helps anyone who has this issue.