Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 18 replies
  • Subscribers 4 subscribers
  • Views 86325 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM Internal Routing

a_user
Hi,

Can the Sophos UTM provide internal routing functionality? Ie. Able to handle multiple gateways and routing between subnets? I am hoping I can use the device in place of having to purchase an additional routing specific device. 

Thanks


This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    I have not really made progress on this since it works without using our customer IP subnet. Currently, as a workaround, we are simply using Masquerading, 12.252.---.226 as the Sophos UTM WAN IP address and 12.252.---.225 as the gateway. It looks like it is possible to configure NAT rules for our scenario and add our customer IP subnet as additional IP addresses for the WAN interface. In theory this all works as long as you don't use the web filter. As soon as you use the web filter (and internal proxy I guess) the settings for outgoing IP address get ignored and the primary WAN IP address is used for outgoing traffic. I read this somewhere else in a different thread but have not really found a solution yet or a recommended way of implementing this properly. As soon as I have a solution, I will post it here.

    Best,
    Daniel

Reply
  • 0

    Hi,

    I have not really made progress on this since it works without using our customer IP subnet. Currently, as a workaround, we are simply using Masquerading, 12.252.---.226 as the Sophos UTM WAN IP address and 12.252.---.225 as the gateway. It looks like it is possible to configure NAT rules for our scenario and add our customer IP subnet as additional IP addresses for the WAN interface. In theory this all works as long as you don't use the web filter. As soon as you use the web filter (and internal proxy I guess) the settings for outgoing IP address get ignored and the primary WAN IP address is used for outgoing traffic. I read this somewhere else in a different thread but have not really found a solution yet or a recommended way of implementing this properly. As soon as I have a solution, I will post it here.

    Best,
    Daniel

Children
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML