Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 3 subscribers
  • Views 770 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Binding von IP Adressen für lokale Dienste auf der UTM

MBatSH

Es mag eine triviale Frage sein, aber wie erzwingt man eine bestimmte IP Adresse als Source Adresse für Dienste auf der UTM (z.B. Up2Date). Ich hätte ja gehofft, dass default die IP Adresse auf der UTM verwendet wird die ein default Gateway hat.



This thread was automatically locked due to age.
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to the Community! 

    If you would like to find out which WAN IP is used for Up2Date download, you could run the following command: 

    Download package in debug mode

    The following command will provide debug output from the downloading process, include authentication, md5sum. You find the tar.gz file in /var/up2date/sys

    • audld.plx --level d

    Look for "outbound interface for 'us1.utmu2d.sophos.com.'" The Up2Date server might be different for you because of the location. 

    >>> Modules::Audld::Authentication::OutboundIface::_get_interface::102()
    outbound interface for 'us1.utmu2d.sophos.com' (1x.XX.XX.XX) : eth1 (1X.XX.XX.XX)

    In my LAB testing, eth1 is the WAN interface that has default gateway configured.

    Thanks,

  • 0 in reply to FormerMember

    The question was not how to retrieve the information, but how to specify which source IP is used for services running on the UTM. For example, there are UTMs that are behind another firewall. For the Up2date service to work it is important that it always communicates with the same address.

  • 0

    Hallo MBatSH,

    Herzlich willkommen hier in der Community !

    (Sorry, my German-speaking brain isn't creating thoughts at the moment. [:(])

    Please show a picture of your Masquerading(s) rule and of any SNAT rules.

    MfG - Bob (Bitte auf Deutsch weiterhin.)

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML