WAS-110 bypass access behind Firewalla
I have a 1200/1200 Mbps AT&T fiber connection that is bypassed using an 8311 WAS-110 SFP+ stick, which is inserted into the SFP+ port of a media converter. The media converter’s 2.5G RJ45 port is connected to the WAN port (port 4) of my Firewalla via a CAT6 cable, while my desktop is connected to LAN port 1.
The WAN connection type is set to DHCP, allowing all my devices to access the internet, with the Firewalla receiving an IP address assigned by AT&T.
For my home network, the IP address pool is set to 192.168.7.1, meaning my desktop is assigned the IP address 192.168.7.108.
The WAS-110 SFP+ stick has a static IP address of 192.168.11.1 for network settings. However, I cannot access this address unless I change the WAN connection type to static and assign the IP address 192.168.11.2 to the WAN port, which results in the internet connection dropping. An alternative setup is to connect my desktop directly to the media converter’s RJ45 port and assign a static IP of 192.168.11.2.
I’ve tried pinging 192.168.11.1, but the address is not reachable. I also attempted adding a static route from my LAN to 192.168.11.0/24 or 192.168.11.1 via the WAN interface, without success.
I am exploring whether there’s an alternative configuration on the Firewalla Gold Plus that would allow me to access the WAS-110 SFP+ stick’s static IP (192.168.11.1) through the WAN port without losing internet connectivity.
I asked the 8311 community, and for people using OpenSense or pfSense, they have the ability to add an alias IP address to the WAN port while in DHCP mode. However, when I checked the Firewalla setup, I found no such option. The only way to assign multiple IP addresses was under the Static IP settings, rather than while using DHCP.
-
Will this guide help? What to do if you can't access modem from inside Firewalla network
-
Will this guide help? What to do if you can't access modem from inside Firewalla network
Thanks for the fast solution, the VLAN methold works perfectly. I didn't know firewalla can also setup a VLAN connection and non-VLAN at the same port.
I didn't try the 2nd method and assume the 2nd method will work as well, and I am wondering if Firewalla would develop this alias IP address to the new software release? this feature is used a lot in Opensense and PFsense when people wants to by pass the ATT fiber gateway.
Please sign in to leave a comment.
Comments
2 comments