Enrico Vanzetto Lv4Posted 06 Feb 2024 17:20
  
HI, which mode you are using tyour Sangfor NGAF?
Try to configure again the broadband conenction.
Here the steps:

1) Configure the Interface and Zone:
Navigate to Network > Interfaces > Physical Interfaces.
Check the box for the desired interface and configure the IP address as 1.2.1.2/29.
Set the next hop address to 1.2.1.1.
2) Routing Configuration:
Configure a default route to 0.0.0.0/0.0.0.0, pointing to the front router (e.g., 1.2.1.2).
Since the internal network interface connects to multiple network segments across Layer 3, configure static routes for each network segment to the Layer 3 switch:
For example, configure a route for the intranet segment (destination address/mask: 192.168.2.0/24, next hop: 192.168.1.1).
3) NAT Configuration:
Create an IPv4 NAT policy under Policies > NAT.
Set the destination address to any and the services to any.
This allows intranet users to access the internet through NGAF.
4) Precautions:
The next-hop IP of the interface is used for link detection and policy routing. If set, the default route of 0.0.0.0/0 won’t be generated automatically; you’ll need to set it manually.
In route mode, ensure that the computer’s gateway in the LAN points to the device’s internal network interface IP or the three-layer switch, with the three-layer switch gateway pointing to NGAF. Internet data is then forwarded by NGAF through NAT or routing

Remember to adapt these instructions to your specific network setup.

I Can Help:

Change

Moderator on This Board

11
6
5

Started Topics

Followers

Follow

1
2
5

Started Topics

Followers

Follow

0
3
4

Started Topics

Followers

Follow

67
20
3

Started Topics

Followers

Follow

3
10
3

Started Topics

Followers

Follow

1
137
3

Started Topics

Followers

Follow

Board Leaders