Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 6 replies
  • Subscribers 5 subscribers
  • Views 13763 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Change Web FIlter external address

Chris Sandbach

 Hi All,

 

I cant seem to find a straight forward way to do this, but I run my Web filter in Transparent mode, is there a way of setting a rule within the Masq to change the address the proxy goes out on. Currently it picks the DHCP address given to my by my ISP, but I have 5 static addresses. I would like to be able to push traffic through one of the static addresses based on what vlan the traffic came on.

 

Any suggestions?



This thread was automatically locked due to age.
  • 0

    Chris, Assuming you have an 'Additional Address' "Browsing" on "External," just make a NAT rule like:

    SNAT : External (Address) -> Web Surfing -> Internet : from External [Browsing] (Address)

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi Bob,

    I was just wondering around the forum wondering about this. Would the following be correct?

    SNAT:

    For traffic from:  Default Public IP Address eg 1.1.1.1
    Using Service:    web browsing
    Going to:            Internet

    ACTION:

    Change the source to:   Additional Public IP address eg 1.1.1.2 or 1.1.1.3 etc
    And the service to:

  • 0 in reply to Louis-M

    Just tried this and it does indeed work. I'd never have thought to try this.

  • 0 in reply to Louis-M

    Thanks, Louis, but I just realized that Chris wanted different IPs depending on the VLAN that originated the request, and that's not currently possible.  I believe that there's a related feature request in Ideas.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0

    You can try Policy Routing under Interface & Routing ->  Static Routing

  • 0

    And keep in mind one think, Web Filter has nothing to do with nat rules. You have to exclude the host from web filter and than that host will be subject for  firewall or nat rules for http services. This is how UTM works :)

Unfiltered HTML