Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment.
Table of Contents
Pre-requisites
- Already deployed and running Sophos Firewall in Microsoft Azure.
- The GUI of the Sophos should be accessible on https://<IPublic IP address>:4444
Problem statement
- Creating Multiple public IPs on Azure and associating it with Sophos WAN Interface.
- This can be applicable in scenarios where a customer may want a unique Public IP for every workload running in Azure(1:1 mapping).
Steps
Create a public IP configuration on Azure portal
- Navigate to https://portal.azure.com/.
- Search for the Resource group containing Sophos instance.
- Click on the hyperlink associated with your resource group.
- You will be redirected to your resource group containing the deployed infrastructure.
- Click PortB.
- Click IP configurations.
- Click Add.
- Fill in the details.
- Name: secondpublicip
- Allocation: Dynamic
- Public IP address: Associate
- Click IP address to configure a public IP.
- Click Create New.
- Provide a descriptive Name.
- Click OK.
- The new public IP gets associated.
- Click OK.
- Wait for some time while the public IP is in creation.
- Notice that the second public IP is now associated with PortB.
- Make a note of the associated Private IP address.
Create an alias interface on Sophos with the created private IP
- Navigate to the Sophos Firewall's GUI on https://<ipv4 Public IP>:4444
- Under Configure > Network > Interfaces:
- Click Add interface > Add alias.
- Under the Physical interface, select PortB.
- Enter the newly created private IP and click Save.
- Verify that the alias IP has been added to the interface.
Test to check if the Sophos is listening on the created public IPs
The Sophos web UI should be accessible via both public IPs.
Added TAGs
[edited by: Raphael Alganes at 7:38 AM (GMT -7) on 17 Sep 2024]