Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 27 subscribers
  • Views 5582 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to install Sophos UTM with Server 2012 R2 handling DHCP

TECHGURU

How do I set it up firewall/utm so that it is between modem and server/workstations while server handles DHCP?

Scenario would be:

Internet Modem > Firewall/UTM (WAN to internet, LAN to switch) > Server/workstations

 

Typically when I install firewalls/UTMS the appliance itself issues DHCP leases and I either disable DHCP On server, it's not installed on server or there is no server.

I am about to install a Sophos 115 into a location where the server (running Server 2012 R2) is handling DHCP and issuing leases to devices on the network.

I cannot access the router currently installed, they lost the logins for it or I'd look at the routers settings.



This thread was automatically locked due to age.
Parents
  • 0

    You don't need any configuration on Sophos firewall if you already have a windows/linux dhcp server. Devices should see the DHCP server via switch.Create firewall policies as per DHCP ranges for internet access.

  • 0 in reply to Support Chn

    Ok, I installed firewall on a test server running Server 2012... disabled DHCP On Sophos firewall (IP 192.168.1.1). Restarted firewall/server/switch/couple of PC's...

    I setup DHCP/scope on test server and DNS forwards on test server (IP 192.168.1.100). It can access internet. It can't go to naughty sites, download unknown files, etc... Yay! Firewall is working!

     

    However,

    PC's with statically assigned IP/Sub/Gateway/DNS can access server/server shares and internet fine. However, do not appear in DHCP lease list on server.

    PC's with auto IP/Sub/Gateway/DNS can access server/server shares BUT NO INTERNET ACCESS. These machines appear in DHCP lease list on server.

    I've performed ipconfig /flushdns, /release, /renew, etc...

    On server I setup DHCP scope 192.168.1.1 to .254, setup DNS forwards for my ISP Comcast 75.75.75.75 and Google 8.8.8.8

     

    When I perform netstat on workstations having issues it says my DNS is 192.168.1.1 (the firewall, is this correct?)

     

    When I install this unit in live environment I do not want to have to set static IP on 50+ computers and another 30-40 printers, DVR's, etc...

     

    How do I get workstations to access internet properly without manually setting IP's and DNS?? :(

  • 0 in reply to TECHGURU

    Can you share result of ipconfig /all for your test server since DHCP works on the machine.

     

    What is dns servers in DHCP scope? You only mentioned about DNS forwarder.

Reply Children