We are trying to build a IDS transparent configuration using Sophos UTM 9.
The idea is to have it configured as a transparent IDS (just logging, and monitoring of the traffic - with the option to drop certain detected traffic).
We are using a physical server with 3 nic - one for management/updates, and two bridged (passthru) NIC-s for the IDS functionality. Other vendors call it a layer 2 bridge - there is no need for the readdressing of our network segments. Something like this: Cisco Security Appliance Command Line Configuration Guide, Version 7.0 - Firewall Mode Overview [Cisco ASA 5500-X Series Next-Generation Firewalls] - Cisco Systems
Is this possible with the Sophos UTM?
This thread was automatically locked due to age.
