Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 7 subscribers
  • Views 5348 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Connect UTM to ISP managed router

PADDY27

Hi,

I need to connect Sophos SG appliance to a managed ISP router that is connected their Fiber network (100Mb). This Cisco router is managed by ISP and I have no access to it.

My goal is to connect SG (not sure which model can be suitable) to their router but I am not sure how this can be done.

I want UTM to do the firewall, VPN, and web filtering.

Current connection looks like this [fiber NTU] -> [ISP Cisco Router] -> [Switch]

And I want it to be like this [fiber NTU] -> [ISP Cisco Router] -> [Sophos SG] -> [Switch]

Could someone please advise if it is possible?



This thread was automatically locked due to age.
Parents
  • 0

    Hey Junseok. I think you need to talk to your ISP. They'll either need to bridge this connection to deliver a routable IP address to the UTM or they would keep the router as it is but create some kind of DMZ and forward everything to the IP of the UTM. No magic solution from the UTM side, sorry.

    Regards,

    Giovani

Reply
  • 0

    Hey Junseok. I think you need to talk to your ISP. They'll either need to bridge this connection to deliver a routable IP address to the UTM or they would keep the router as it is but create some kind of DMZ and forward everything to the IP of the UTM. No magic solution from the UTM side, sorry.

    Regards,

    Giovani

Children
  • 0 in reply to giomoda

    Okay. Also this router has inter vlan routing configured for data and voip vlan. Is that something UTM can also do if router forwards everything to UTM?

  • 0 in reply to PADDY27

    Hi Junseok and welcome to the UTM Community!

    WebAdmin automatically builds routes between all Networks defined on its interfaces.  You determine what traffic is allowed to pass using firewall rules.  Note #2 in Rulz - some invisible firewall rules are created automatically when you configure proxies, VPNs, etc.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    I'm about to do one of these today. Exact same scenario. The ISP should be able to give you your IP addreses that should be routable eg block of 8 ipv4's or an IPv6 /64 generally.

    Simply set up the UTM as if it was connected to the internet ie you UTM WAN will connect to the Cisco router. The Cisco simply acts as a bridge in most of these cases and will hand off the routable IP addresses.

    So the WAN becomes the IP Address they give you. You will need to enter the GW address too and any additionalIPv4 addresses. If using IPv6, this will need setup under appropriate tab.

Unfiltered HTML