Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 3 subscribers
  • Views 14312 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to Configure usable IP range of addresses

SrinivasanMunikrishnan

Hi,

I started exploring Sophos UTM 9.4 Essentials installed in my own server. I am able to configure the WAN and LAN interfaces in eth1 and eth0 and the local internet was working fine. Now I want to configure the Static Ip got from my ISP (4 IP's). Please find the IP details wee got from ISP below and provide me a detail solution.

WAN IP Block - X.X.X.64/29

Network IP: X.X.X.64

Ip Usable Range : X.X.X.66 & X.X.X.70

Subnet: 255.255.255.248

Gateway: X.X.X.65

Broadcast IP: X.X.X.71

I have two nic in my server and assigned eth0 - Internal (172.22.0.254/24) and eth1 - WAN (X.X.X.66/29) and gateway X.X.X.65

After that I have added a fire wall rule -  Internal Network > any > any and Masquerading Internal Network > WAN

Please help to configure the usable IP  from 67 to 70.

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    Hi, Srinivasan, and welcome to the UTM Community!

    With UTM, it is not necessary to have a default gateway within your subnet.  You could, for example assign x.x.x.64/32 to your WAN connection and have a default gateway of x.x.x.1.  The default gateway should be the IP of your ISP's router to which you connect.  If that is x.x.x.65, then that is correct.

    You should not need to reserve x.x.x.71 as a broadcast address - you can use it along with 66 through 70.

    For example, create an Additional Address on eth1 named "Mail" with x.x.x.66/32.  You can receive mail to your mail server using a NAT rule like 'DNAT : Internet -> SMTP -> External [Mail] (Address) : to {mail server}'. You can send mail from .66 using 'SNAT : {mail server} -> SMTP -> Internet : from External [Mail] (Address)'.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Thank for your reply. I have modified the eth1 interface as you told. But after adding the IP 182.156.255.66/32 in additional address tab the internet is working. For your reference I have attached the images. I am not good in NAT and all. Can you please provide me step by step in detail for DNAT / SNAT.

    Now I want to assign a external IP in any one of the server located inside the router premises. For example I want to assign 182.156.255.67 and to access inside / outside of this server. In order to do that what are the values for subnet mask and default gateway will be applied in the server. we badly need you help.

    Please find the exact IP address shared by the ISP provider.

    WAN IP Block - 182.156.255.64/29

    Network IP: 182.156.255.64

    Ip Usable Range : 182.156.255.66 to 182.156.255.70

    Subnet: 255.255.255.248

    Gateway: 182.156.255.65

    Broadcast IP: 182.156.255.71

    Please find the images attached below

Reply
  • 0 in reply to BAlfson

    Thank for your reply. I have modified the eth1 interface as you told. But after adding the IP 182.156.255.66/32 in additional address tab the internet is working. For your reference I have attached the images. I am not good in NAT and all. Can you please provide me step by step in detail for DNAT / SNAT.

    Now I want to assign a external IP in any one of the server located inside the router premises. For example I want to assign 182.156.255.67 and to access inside / outside of this server. In order to do that what are the values for subnet mask and default gateway will be applied in the server. we badly need you help.

    Please find the exact IP address shared by the ISP provider.

    WAN IP Block - 182.156.255.64/29

    Network IP: 182.156.255.64

    Ip Usable Range : 182.156.255.66 to 182.156.255.70

    Subnet: 255.255.255.248

    Gateway: 182.156.255.65

    Broadcast IP: 182.156.255.71

    Please find the images attached below

Children
No Data
Unfiltered HTML