Config Intra-Interface Traffic Inspection V.12.7.2

Jabawack69Jabawack69
in Firebox - Firebox Cloud & FireboxV

I need to config policy on interface eth1.
Interface eth1 on IP Address
-Primary : 192.168.5.1/24
-Secondary : 192.168.0.254/24 and 192.168.1.254/24
I can't separate IP Secondary to other interface.but i need control policy between 192.168.5.0/24 and 192.168.1.0/24.
I research to docs(https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/networksetup/intra_interface_inspection.html).
Firebox can do intra-interface traffic inspection in Fireware v12.8 or higher.
I can't upgrade version firmware.
Please suggest for me.

Comments

  • Bruce_BriggsBruce_Briggs

    Since you can't upgrade and can't/won't separate 192.168.5.0 from the other 2 subnets, then there is no way to do what you want.

  • james.carsonjames.carson Moderator, WatchGuard Representative

    Hi @Jabawack69

    Your choices are:
    -Separate the networks onto different interfaces
    -Upgrade Fireware to v 12.8 or better.

    If you're unable to separate the physical interfaces, changing them over to VLANs on the same interface may allow you to do what you're looking for.

    -James Carson
    WatchGuard Customer Support

  • Jabawack69Jabawack69

    @james.carson said:
    Hi @Jabawack69

    Your choices are:
    -Separate the networks onto different interfaces
    -Upgrade Fireware to v 12.8 or better.

    If you're unable to separate the physical interfaces, changing them over to VLANs on the same interface may allow you to do what you're looking for.

    Thank you sir, i try changing VLANs on the same interface.

Sign In to comment.