Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 847 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos home single NIC

Alan Perkins

I've seen topics about the single arm firewall setup.....  I'm trying to make something like this work.  I do have L2/L3 Cisco switches I am using which I could setup a "transfer switch" type setup although I am unsure of how this would work with the sophos unit.

I will order a USB NIC adapter if worst comes to worst or build it on EXSI or something setup virtual adapters..... not sure but any suggestions here would be wonderful! I do have experience in virtualization, networking, hyper v, exsi so on....



This thread was automatically locked due to age.
  • 0

    Hi,

    you would better off building a VM which will accept the USB NIC and give you two NICs which will make setting ups the XG much simpler.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0

    what I did is throw ESXI on the host system, then built Sophos on top of that.  I couldn't get VMware to support my USB NIC either, so I used a single NIC, created 2 virtual NICs
    Then made a VLAN on my switch for the "WAN" (modem) as an access port, then trunked the port going to the host with the LAN VLAN as native, (I had to mark it as native or I couldn't communicate with ESXI otherwise I would've just tagged the 2 virtual NIC's), so I made VLAN 900 for WAN, and VLAN 10 for LAN then trunked those 2 into the host. This on a L2 switch, Cisco 2960
    I haven't tried adding any other VLAN's yet, but the main 2 I need are working great... and I was able yank out my Unifi infestation to sell.

  • 0 in reply to Alan Perkins

    Hi Alan,

    while that will work, is not the most secure setup, you really need to physically seperate your WAN from the rest of your network.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    I would tend to agree with you, until I can make something else happen this will have to do....

Unfiltered HTML