I have used astaro at home for the last several years and like most features available. I was able to recently obtain a Cisco 5505 with extra liscensing for a reasonable cost.
The Cisco is a pure firewall There is no IPS nor web filtering (unless you want to spend $1000 for the IPS module or a substantial yearly web filtering fee). I would like to place an astaro between the cisco and cable router and use the astaro's IPS and web filtering (and hopefully logging and reports). In other words, in Cisco speak, use the Astaro as a transparent firewall.
Setup would be:
Cisco 5505 -----> Astaro -------> Cable Modem
The internet IP address is not static. It is DHCP assigned by the cable modem to the first device it connects to. If you unplug the cable modem and plug it into a different device, that device either has to renew the DCHP lease or the modem has to be turned off / on.
I do not want to double NAT with the astaro. I would like it to be a true transparent firewall (such as the Cisco can do). I could only find two old posts in the forum about this. They may have been set up with double NAT.
The Astaro will have 3 NICs: 1 for managment and 2 for data.
I tried these things and they did not work:
(1) Bridge 2 NICs. Did not create interface. Under advanced bridge properties lift MAC blank. No traffic passed through Astaro
(2) Bridge 2 NICs. Did not create interface. Under advanced bridge properties cloned MAC address of Cisco interface that is connect to the astaro. No traffic passed through Astaro.
(3) Bridge 2 NICs. Create interface. Left MAC as created. No traffic passed through Astaro.
(4) Bridge 2 NICS. Create interface. Cloned MAC to Cisco interface that connects to Astaro. No traffic passed throug Astaro.
I did find online instructions on how to create a transparent firewall with pfSense. I'm hoping it can be done with Astaro. Thank you for any help.
This thread was automatically locked due to age.
