i want to be able to VPN into my home network to pull files. sync'ing offline files has become far to expensive on a meager 120gb SSD.
this is how the network's setup so far.
cable modem --- Cisco --- PIX --- FTMG 2010 ---- (lan)
i never really liked this because i needed to purchase a Smartnet agreement from Cisco as well as a subscription from Microsoft to update the scanning engine. also, i never ever got an answer that helped me to be able to forward vlan traffic from the router and have it terminate at the pix.
i stumbled upon SophosUTM, which i really like and have already replaced the FTMG setup. next, i will drop the Cisco devices (not soon enough mind you.)
now here's what i'd really would like to do,
cable modem --- pfSense(firewall/nat1) --- SophosUTM(proxy/nat2) --- (LAN)
however, this time, pfSense and SophosUTM are on different networks, pfSense on it's own, while the SophoseUTM box bridges the pfSense box and the LAN.
now here are the questions about what to do to get the VPN working:
1. should i terminate the VPN at the pfSense box, or the SophosUTM box?
2a. if i terminate the VPN at the pfSense box, what ports and protocols do i forward to pass through the SophosUTM so that i can access the LAN?
2b. if i terminate the VPN at the SophosUTM box, what ports and protocols to i pass through the pfSense box so that I can access the LAN?
i am sure i will get responses about how i don't need two, and i can just use one, and while i appreciate this suggestion, that's not what i am looking to do.
the other option is this is the simple approach,
cable modem --- pfSense/SophosUTM(proxy)/(LAN) [all on the same network]
if i were to do this, how would i reconcile having two ports on the SophosUTM box? would i just team them and point to the pfSense box as the gateway?
but again, i rather go the other route.
This thread was automatically locked due to age.
