Hi,
I signed up for a UTM home license several years ago and never got around to actually configuring it (looked too complicated). More recently, I've had another crack but I'd like some pointers into where the thing should be positioned.
I have a Fritz! router to the outside world and a number of devices LAN and WLAN connected. One of my PC's hangs off another router (acting as a Gb switch) running Windows 10 with Hyper-V enabled. I've run up the UTM Home on that and given it two vNics (same network though) since the set-up required and internal and an external. I did only a quick config and set up the web filter/proxy, and pointed one of my browsers at it.....didn't sit like that for long as it seemed to get slow. That was a few weeks ago, but I thought I'd come here for help before totally giving up :)
FWIW - I have a RaspberryPi running PiHole and have it's IP address added as the DNS address supplied by the Fritz! DHCP. For now, IP4 only since I can more easily understand it :)
I also have some other VM's running and exposed to the Internet via NAT: Nextcloud and a wordpress, with an Nginx VM I'm trying to use as a reverse proxy.
1) Would I need to set the internal vNic address of the UTM as the default gateway for clients? If yes, I'm not sure I can do that from the Fritz! so may have to use DHCP from either Pi-Hole or the UTM itself. If no....then how does UTM monitor the traffic
2) Can/should the UTM act the reverse proxy for Nextcloud and wordpress? I currently have the Nginx VM grabbing TLS certificated from LetsEncrypt; would UTM do this also?
3) How will this change if I enabled IP6? I'm sure I read somewhere that the default gateway concept is removed in IP6 so really not sure how to position the UTM in that situation.
4) Do I need to rethink the entire set-up? I'm happy to entertain most changes (perhaps when my wife isn't here :)) but I don't have funds to buy another PC to act as a dedicated UTM at the moment. In case it makes a difference - we're currently ADSL but should be getting 'NBN' (Australia) going live this month (FttB which I believe is VDSL2). Other than a provider change, I don't believe there'll be any changes (i.e., no additional modem added)
--Edit--
I forgot to add what I'm hoping to get out of this; I'm hoping I'll be able to see which devices are using the most bandwidth in real-time, as well as the total volume of traffic consumed. If I could drill down and see which websites (eg, is it a streaming service), even better.
In addition to that, I'd like to be able see incoming requests for Nextcloud/Wordpress and know they're being protected. Finally, I'd hope that if I NMAP (or similar) my network it'll generate an alert :)
thanks
Dave
This thread was automatically locked due to age.