Guest User!

You are not Sophos Staff.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Best practice amalgamating two networks

I currently have two separate networks in the same building and a remote RED connecting to network A

Network A, uses a fibre BB connection, 10/100/1000 switch, 20x PCs/ servers/ printers, on 192.168.100.1/24 through a Sophos 110/120 UTM
Current setup on Network A  =  Modem>UTM>switch

Network B, uses a fibre BB connection, 10/100 POe switch, Asterisk/ freepbx server, a SIP trunk and 10x cisco handsets on 192.168.1.1/24 (all static)
Current setup on Network B  =  Modem>router>switch  (router forwards ports 5060 UDP and 6000:40000 UDP ONLY from SIP providers IP to voip server)

I need networks A+B to share the new superfast broadband.

My original idea was to use the DMZ in the UTM then a separate router to handle the voip network, but I don't think this is the best way. I could also install a router before the UTM and not use the UTM as the PPOe negotiator. But it would be a shame not to use the UTM fully. 

How can I get the UTM to manage both networks? I can re-address the voip network to match the data one but I'd prefer to separate the traffic ( i'd rather not have the voip packets travelling round the data switch)

The reason there are two fibre lines is that the original setup required the voip server and data networks to have separate subnets and the Asterisk voip server was really picky about the NAT when it was re-routed from one router to another to change the subnets (this was prior to having the UTM)

There is no current requirement for the Remote RED site and it is down for the time being but I might reinstate it later, possibly with voip if possible.



This thread was automatically locked due to age.
Parents
  • Hi, Kieran, and welcome to the UTM Community!

    What advantage will you achieve by having the UTM manage both sites?  Which site has the super fast broadband?  Is there a reason to NOT connect both WAN connections to the UTM?

    Cheers - Bob

  • Hello, thanks for the reply.

    The two networks I wish to run through the UTM are on the same site, the remote site is offline at the moment, but I may bring it back at a later date.

    I wish to run both networks through the UTM for security, simplicity and to avoid having to put a router before the UTM in order to split the voip off to one switch and handle the QoS

    thanks

  • OK, the answer for anyone wondering how to do this, is quite simple.

    You simply create another network, on another interface and after copying the definistions that the setup wizard creates for the original LAN you end up with two networks that share the wan each with their own gateway relevant to their subnet.

    Now to the next issue; it seems that the PPPoE connection is delivering 20/20 broadband rather than the 80/20 it should be...

Reply
  • OK, the answer for anyone wondering how to do this, is quite simple.

    You simply create another network, on another interface and after copying the definistions that the setup wizard creates for the original LAN you end up with two networks that share the wan each with their own gateway relevant to their subnet.

    Now to the next issue; it seems that the PPPoE connection is delivering 20/20 broadband rather than the 80/20 it should be...

Children
No Data