Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 6 subscribers
  • Views 7347 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to set up DMZ? Need second switch?

Russ Blumenthal

Hi Folks,

 

I want to set up a DMZ and have a question. I have enough NICs on my machine that is running UTM, but do I need a separate switch just for the devices that I want to place in the DMZ? Right now I have the LAN port going to a 24 port unmanaged switch.

 

Thanks



This thread was automatically locked due to age.
  • 0

    Maybe, if you have multiple devices in the DMZ.  One newly-activated UTM port typically connects to tbe DMZ LAN.   That cable can connect to a single host, a second switch, or your existing switch if it is smart enough to support a DMZ VLAN.

    You could also use multiple UTM ports in bridged mode if you really want to avoid adding a switch and your DMZ device count is low enough.  But I think you will be happier over the long haul without a bridge configuration.

  • 0 in reply to DouglasFoster

    Thanks for the input. Currently it will only be a single device in the DMZ. How do I go about setting up a bridge mode? I am fairly new to UTM, just cutover to it about 3 weeks ago. Thanks!

     

    Edit: Noticed that you said I would be happier without bridge mode. I wonder if I could get away with a small 4-5 port gigabit desktop switch and just use that.

  • 0 in reply to Russ Blumenthal

    If you have only a single device, Russ, you don't need  switch, but, yes, a small 4-5-port switch would work just fine.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Great thanks. I ordered a small 5 port gigabit switch. Already am using one so I know I like it.

  • 0 in reply to Russ Blumenthal

    And bridge mode wouldn't be needed even without the switch.   Doug suggested bridging if you had more than one device, had additional NICs and wanted to avoid adding a switch.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML