Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 5 subscribers
  • Views 1964 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM as Backend Firewall Design

Sally

Hello,

i use Sophos UTM Home since years now, and im really happy with it:) But as the Sophos UTM is still missing the Open VPN Client possibility, and DNSCrypt DOH is also not possible, i was thinking to add an other FW as Fronted Firewall to configure the Services there, but want also to keep the Sophos UTM in the Backend.

This is my actual Sophos UTM Config:

Im not sure yet, what would be the best approach.

Any ideas?

Thx

Best regards

Sally



This thread was automatically locked due to age.
Parents
  • 0

    place a second firewall between Sophos and internet.

    You need an additional transfer-network and some routes.


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

  • 0 in reply to dirkkotte

    thx dirk for the reply. do i need for the transfer network a own interface to configure, or can i use the eth1 wan interface and reconfigure this interface as transfer network, to connect from this to front-end firewall?

    as i use also http proxy on my sophos, dhcp for the clients, i was wondering if i have on front-end firewall also an proxy running to set on utm just upstream proxy from frontend?

    regarding dns, if the frontend firewall is the dnscrypt proxy, do i have to just add on utm the ip as forwarder?

    Thx

Reply
  • 0 in reply to dirkkotte

    thx dirk for the reply. do i need for the transfer network a own interface to configure, or can i use the eth1 wan interface and reconfigure this interface as transfer network, to connect from this to front-end firewall?

    as i use also http proxy on my sophos, dhcp for the clients, i was wondering if i have on front-end firewall also an proxy running to set on utm just upstream proxy from frontend?

    regarding dns, if the frontend firewall is the dnscrypt proxy, do i have to just add on utm the ip as forwarder?

    Thx

Children
Unfiltered HTML