Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 2 subscribers
  • Views 2522 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

NAT rule Sophos UTM 9

azler
Seem to be having a bit of difficulty with UTM and preserving client IP addresses. 
Info:
I have a Draytek router with a VPN IPSEC tunnel going to another site. 
I have sophos UTM running under Hyper-v with two nics.(Internal:.221 External:.251).

The setup works fine but with a few issues concerning the VPN IPSEC tunnel to the other site. 
All clients point to .221 as their default gateway. 

The clients access an ssh service from the other site and the logs from that service shows that all traffic is coming from the source IP of .251. Due to the masquerading rule. 

Is there anyway to setup a rule or NAT to preserve the client IPs while accessing the VPN tunnel or route them directly to the router and not through the other nic on the UTM?

Rob


This thread was automatically locked due to age.
Parents
  • 0
    ^
    || - What Barry says!

    In fact, otherwise, without a bit of fancy work at the other site, you wouldn't be able to establish an IPsec VPN with the UTM because it sits behind a NATting router (the Draytek).

    Cheers - Bob
Reply
  • 0
    ^
    || - What Barry says!

    In fact, otherwise, without a bit of fancy work at the other site, you wouldn't be able to establish an IPsec VPN with the UTM because it sits behind a NATting router (the Draytek).

    Cheers - Bob
Children
No Data