Hello,
Glad to see everyone, I am new in Sophos and currently evaluating UTM 9.4. Please help if below requirement in achievable:
Current network layout:
- ISP -> Peplink Balance 310 -> LAN (10.10.1.0/24). Within this LAN we have two servers: 10.10.1.100 and 10.10.1.101. Peplink router (10.10.1.1) lease DHCP to all clients.
- There are remote sites connected via SpeedFusion (10.10.2.0/24 -> 10.10.9.0/24)
New required network:
- No change in LAN network / subnets (the two servers), adding Sophos UTM as a sandbox to secure our servers.
- Define firewall policy to allow/block connection to servers (from WAN/ LAN/ VPN)
There are two options I've tested: Bridged Mode, or Sophos UTM as gateway and provide DHCP Relay but none can meet the requirement.
- If Bridged Mode used: the firewall seem not working as connection from other LAN clients cannot be blocked.
- If gateway mode used: DHCP relay is not working (firewall rules DHCP ports, etc... are checked carefully according to topics previously posted in this forum)
Anyone please help with following consideration:
- Can Sophos UTM support DHCP relay directly from WAN side? As below:
Peplink (DHCP 10.10.1.1) -- (WAN 10.10.1.2) Sophos UTM (LAN DHCP relay server is: 10.10.1.1) -- Secured servers 10.10.1.100 and 10.10.1.101.
- Can Sphos UTM support ports and protocol (TCP/UDP, etc...) blocking between LAN clients in either Bridged Mode or Gateway Mode? (ie: allow 10.10.1.33 to access the servers but not other computers).
Thank you
DUy Huynh
This thread was automatically locked due to age.