This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM in a DMZ. NAT rule?

I'm trying to configure a UTM whose WAN interface is connected to the DMZ port on a VoIP box. The UTM's external IP is 10.40.x.x instead of the public-facing IP from the ISP. How do I configure NAT (or whatever else) so that the DMZ hop is transparent to the internal network?

For example: I'm unable to connect to the UTM WebAdmin console from outside the network using it's public address and from the inside I'm unable to access my other UTM's WebAdmin consoles using their public addresses.

This thread was automatically locked due to age.

Parents

0 dsolutions1 over 11 years ago

Bob,

Even though we are new to Sophos, we have support numerous main line firewalls. Placing the VoIP box behind is not an option. The VoIP provider designed the box to work that way.

Since you proclaim to be the all-knowing Sophos expert, surely you have encountered in your vast experience an internet provider who hands off an ethernet port. I have seen this on MPLS network and some cable providers. They give you a box they manage and give you an IP on their network.

So what do you do in that instance? Surely there is a workaround.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 dsolutions1 over 11 years ago

Bob,

Even though we are new to Sophos, we have support numerous main line firewalls. Placing the VoIP box behind is not an option. The VoIP provider designed the box to work that way.

Since you proclaim to be the all-knowing Sophos expert, surely you have encountered in your vast experience an internet provider who hands off an ethernet port. I have seen this on MPLS network and some cable providers. They give you a box they manage and give you an IP on their network.

So what do you do in that instance? Surely there is a workaround.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data