This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Wireless Hotspot Device Exeption

Hello,

 

I have set up Sophos UTM  9.411-3. I have connected it to a TP-Link Access point and have set up an Internal wireless network & Guest Hotspot network. Both work fine and the hotspot webpage works when users connect to the guest network.

 

However i have some devices (games consoles, mobile phones etc) which i want to be connected to the network all the time but not on the internal network. How would i do this?

 

Many Thanks



This thread was automatically locked due to age.
Parents
  • Hi, Philip, and welcome to the UTM Community!

    I think you haven't gotten an answer because it's not clear exactly what you're asking...

    "i have some devices (games consoles, mobile phones etc) which i want to be connected to the network all the time but not on the internal network."

    By that do you mean that you want those devices to be able to connect via WiFi to the Internet?  Are any (like the game consoles) connected via Ethernet cable to your internal network?  Can you add another Ethernet NIC to your device running UTM?

    "Internal wireless network & Guest Hotspot network."

    By that, do you mean that the TP-Link AP has the capability of two (and only two) separate WiFi SSIDs/networks and that you have bridged your Internal network with the Internal wireless network?  How does the TP-Link separate the traffic - using VLANs?  If so, what VLAN tags are you using?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Thanks for your reply Bob,

     

    Yes, i would like to connect these devices wirelessly to the WAN without connecting to Internal or requiring a code because of the hotspot.

     

    No the TP-Link has the capability of up to 4 SSID's. Traffic for internal wireless & guest wireless is separated via VLANS. Internal is VLAN 43 and Guest is VLAN 44.

     

    Many Thanks

  • So, I'm again confused, Philip.  If you added an additional NIC to the VM in which the UTM is installed, then you will need to reboot the UTM before it will recognize the added NIC.  If the added NIC is different (e.g., E1000 instead of VMXNET3), then you will have to re-install from ISO as the UTM is not plug-n-play.  If this is ESXi, you will want to avoid the other NIC types and use VMXNET3.

    In any case, you shouldn't have needed an additional NIC in the VM hosting the UTM, just a new Interface definition in WebAdmin.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Philip, please drop this as it's going nowhere. The behavior has changed from 9.4 onward and that would not be your issue. My apologies for not checking this before sending you on a wild goose chase.

    Regards - Giovani

  • Hello Bob,

    The NIC I am creating and adding is a VMWARE one.

    Would you be able to tell me what type of interface I would need to use and how it should be configured?

    Kind Regards.

  • I thought i would show you what i am doing to try and make it easier to understand. I have created an additional VLAN (60) for an "Always Connected" network and attached it to UTM.

     

    When I then boot UTM and connect to the web interface i see the WAN Link is "Error"

    What is interesting is when i look in the Hardware tab of the Interfaces i can see that the MAC address of these interfaces have swapped around!

     

    Would this be the issue? I have tired to fix the MAC addresses in VMWare but it threw an error around MAC addresses being reserved for other systems.

     

    Hope this makes it clearer!

  • My guess is that you might be right about the MAC problem - have you rebooted Switch 0 since you made the changes to the UTM VM?  You usually need to clear the ARP table in the connected switches/routers, and Link Down is consistent with that as a problem.  Did that resolve your issue?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Hey Bob,

     

    Thanks for replying to me. i have tried all sorts, rebooting UTM, rebooting ESXi etc and always seem to get the same issue! I would really like to get this working as at the moment i have devices which i cant put on the network :(

     

    Kind Regards

  • You might try #7.7 in Rulz.  I don't know enough about VMWare, but my guess is that you don't need to worry about the speed/duplex there, just on the ISP's modem/router and eth1.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • I took a look at rule 7.7, and i looked in the settings of my modem & I am not able to change the speed/duplex setting. i cant even see anywhere that tells me what it currently is :/

  • You'll probably need to check with your ISP.  It probably has a web interface with an IP like 192.168.1.1.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • You'll probably need to check with your ISP.  It probably has a web interface with an IP like 192.168.1.1.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children