I am currently evaluating Sophos UTM 9 as software on an existing machine. I have hit an issue that seems odd. If it were a bug, I'd think someone else would have hit it before now.
Small test lab. Two interfaces. One internal/private with a private address space, and one external/public interface connected to a cable-modem. The cable provider has provided 5 public static IP addresses.
I cannot get any outbound traffic to use any IP address besides the IP address specified on the external interface of the UTM GUI. I have created additional IP addresses on the "additional address" tab on the GUI. I've changed the masquerade rule to use the additional address, but the reported address is still the original address.
If I create an SNAT rule, it is ignored.
If I delete all NAT rules (including the default masquerade rule), traffic is *still* masqueraded (with NO RULES!) and uses the default address.
The only way to get it to use another of the 5 IP addresses allocated is to change it on the interface itself. Changing the IP address *DOES* work. But that still relegates all outbound traffic to that one IP address. The benefit of multiple masquerade rules, or *any* SNAT rules, seems completely lost, as does the GUI option to choose an additional address in the masquerade or SNAT rule process.
Thoughts? Suggestions? This needs to be resolved before a purchase can be finalized.
This thread was automatically locked due to age.
