Hello all,
So I have a co-worker who attended an introduction refresher to networking course. Since then he is determined to drop a Cisco router between the UTM and our user switches. I told him this is unnecessary because the UTM handles all of our routing needs just fine. We only have about 75 users and ~100 devices.
His complaint: Well I should be able to run the Spiceworks scan across both our subnets without sending our device count through the roof. We need to pass the traffic amongst both subnets flawlessly. There's no reason for the UTM to get in between.
So to expand, we had an issue a few months back where a Spiceworks scan would cause us to exceed our device count available on our license. What I discovered is that when spiceworks uses an NMAP scan, it triggers the UTM web proxy to think that there is a device on every single scanned IP of the opposing subnet.
My question is... Am I wrong to avoid wanting to complicate our network with another Cisco router when the UTM should handle all of our routing needs? Is there a solution to the NMAP scanning. How can I make 2 subnets work seamlessly?
Below is an expansion on our configuration...
eth0 - Internal LAN [10.0.0.0]
eth1 - External WAN
eth2 - Internal LAN 2 [10.0.2.0]
eth3 - External WAN 2 (HighSpeed)
The reason we have 2 subnets is to have traffic exit at 2 different WAN connections.
Masquerading says that:
eth0 -> eth1
eth2 -> eth3
Thanks!
-Nator
This thread was automatically locked due to age.
