This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Masquerade more then one IP address on WAN interface

We have a wireless Guest network that uses the UTM9 (SG650) to masquerade the internal IP addresses to the public IP on eth7. (many-to-one NAT)

The bandwidth of this Internet circuit is 1GB. At peak usage times, users sometimes cannot access the Internet. (page can’t be displayed). As the circuit peaks at about 100Mb, we believe the problem is the public IP address on eth7 is overwhelmed with users, exhausting all tcp ports available.

This can be avoided by adding an additional IP address to the pool that masquerades. I tried adding an alias to eth7, but I can’t tell if it’s working. Or, if this configuration is even possible.

Other network elements have this configuration option.

Thanks,

Jerry



This thread was automatically locked due to age.
Parents
  • Within the last year or two, two capabilities have been added to facilitate this.

    1. The list of Masquerading rules was made an ordered list and the use of Additional Addresses was added.  This allows you, for example, to have a rule like '10.10.10.0/24 -> External [Extra1] (Address)' above one like '10.10.0.0/16 -> External'.
    2. How to change the outgoing interface for Web Filtering

    Please let us know what you do and your results.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • Within the last year or two, two capabilities have been added to facilitate this.

    1. The list of Masquerading rules was made an ordered list and the use of Additional Addresses was added.  This allows you, for example, to have a rule like '10.10.10.0/24 -> External [Extra1] (Address)' above one like '10.10.0.0/16 -> External'.
    2. How to change the outgoing interface for Web Filtering

    Please let us know what you do and your results.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children