This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN Router with UTM

Hi everyone,

I've been using a UTM Home server for about a year now and absolutely love it - it's a brilliant piece of kit.

What I would like to do now though is route all the outbound internet traffic through a VPN router.

So at the moment, I have a setup like this:

]------BT Business Modem ---- UTM---- LAN SWITCH ---- AP30

The Business modem is a little white box that sits between the phone socket (fibre to the cabinet) and the UTM - it was a WAN port and LAN port and is in no way accessible.

The UTM is used to do the PPoE dialup and the whole system works incredibly well.

However, the whole direction the government is taking with it's recent legislation nicknamed the "snoopers charter" concerns me. Whilst I have nothing to hide, I don't particularly want any old tom *** and harry having easy access.

I subscribe to a VPN provider and rather than make like complicated and route only certain traffic, I am happy to route it all.

So I envisage it would look something like:

]------BT Business Modem ---- VPN Router ---- UTM---- LAN SWITCH ---- AP30

Or, given the UTM does the PPoE dialup would it more logically be

]------BT Business Modem ---- UTM ---- VPN Router  ---- LAN SWITCH ---- AP30

Whilst it looks simple enough when you draw it out, I am coming up with a mental block as to how it would actually work.

Any advice would be gratefully received.



This thread was automatically locked due to age.
Parents
  • Hi, Tony, and welcome to the UTM Community!

    In fact, the UTM doesn't have a straightforward way to act as a client of a Remote Access server.  I'm not aware of anyone here reporting success in the last ten years.  You only can go straight from your PC or mobile device.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Thanks Bob

    No...I got that the UTM can't easily act as a VPN client which is a shame.

    I've got a working solution now though.

    I bought a cheap-as-chips gl-ar150 vpn router. This now sits LAN-side of the UTM and I've configured the UTM to hand it out as the default gateway.

    The gl-ar150  has openvpn built in and brings the tunnel up automatically.

    It was simple to set up and so far is working very well.

Reply
  • Thanks Bob

    No...I got that the UTM can't easily act as a VPN client which is a shame.

    I've got a working solution now though.

    I bought a cheap-as-chips gl-ar150 vpn router. This now sits LAN-side of the UTM and I've configured the UTM to hand it out as the default gateway.

    The gl-ar150  has openvpn built in and brings the tunnel up automatically.

    It was simple to set up and so far is working very well.

Children
  • Hello Tony!

    Could you tell me how you went about accomplishing this?  I share your sentiments regarding the use of VPNs, and I had subscribed to a service shortly before acquiring my UTM box, but I'm having trouble figuring out how to implement it since Sophos doesn't seem to support this kind of VPN use...if I can't find a workaround it may be a deal-breaker for me.

    My setup is a little different.  Currently I have:

    ISP Modem -> UTM -> Wireless Router (reconfigured) -> LAN devices

    The Wireless Router I have is pretty good; its features originally include being able to work with VPNs (including the OpenVPN protocol)...however, in order to work with my UTM, I had to switch the router to "Access Point Only" mode...doing this essentially made it a simple wireless switch, handing many of its former duties (DHCP, VPN, etc.) off to the UTM.   My understanding is that if I turn those features back on, it means my traffic will have to be "double-NAT'd"...I'll have to have settings on both the Wireless Router and the UTM.  I have no idea what that will do for speed, latency, etc.  I'm also uncertain of the complexities involved in working with two sets of rules (on both the Wireless Router and the UTM).

    I'd appreciate any advice or insight you may have!