Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 5 subscribers
  • Views 8343 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Odd Networking Scenario - any ideas?

CaseyJCO

Hi,

This is an odd networking scenario, so bare with me - TL;DR - How do I get both networks accessible through the UTM?

I have 2 internet connections - one with a block of static IP's behind the UTM 220 for servers, one with a DHCP IP that is a gig connection mainly for normal internet use.

Is there a way that I can route through the UTM while on the gig connection so I can reach the server subnets, but still use the gig connection going outbound, and leave the servers still using their default connection going out?  (i.e. I'm on 10.0.0.x subnet for gig, I want to reach the 10.150.0.x subnet that is on the UTM - is that possible?)

Thanks for any insight!



This thread was automatically locked due to age.
Parents
  • 0

    Is there a 2nd device here? ie what is using the gig connection?

  • 0 in reply to Louis-M

    That's the rest of the PC's in the office.. general internet use..  i.e. desktops/wireless

     

    So: Modem 1 (Static IP/NonGig) - Servers (10.150.0.x subnet) with UTM 220

    Modem 2 (Non Static/Gig) - Rest of desktops/wireless (10.0.0.x subnet)

     

    Just wanting to be able to access the 10.150.0.x subnet from the 10.0.0.x connection. Unfortunately also, that gig connection is a comcast router, so there's no way to do a static route on it.. very little i can do in the web interface except set subnets and dhcp and basic networking stuff.

  • 0 in reply to CaseyJCO

    You should be able to configure an unused UTM interface with a 10.0.0.x address to provide connectivity from the office network to the 10.150.0.x server network.   You will need a routing-capable switch on the office network, configured with a static route.

    However, if you turn on Standard Proxy web filtering and point your desktops at UTM, the web traffic will leave from the server's lower speed Internet interface.   A small price to pay to avoid ransomware.

    I don't see any way to usefully connect both DHCP and non-DHCP ISPs directly to the same UTM, because you can have only one default gateway.  But you could do it with two UTMs. 

  • 0 in reply to CaseyJCO

    Casey, if Doug's suggestion doesn't fix your issue, please show a rudimentary diagram of your topology.  I'm confused that you speak of 10. subnets but have public IPs internally.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0 in reply to CaseyJCO

    Casey, if Doug's suggestion doesn't fix your issue, please show a rudimentary diagram of your topology.  I'm confused that you speak of 10. subnets but have public IPs internally.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML