I have a client with an HP media server sitting behind a RED. Is it possible to get the server web accessible while maintaining vpn routing to the other devices?
I'm not sure I understand your question. All of the IP's behind a RED are just like IPs connected to any other Astaro interface so there should be no problem doing what you want.
Cheers - Bob
Sorry for any short responses! Posted from my iPhone.
Sophos UTM Community Moderator Sophos Certified Architect - UTM Sophos Certified Engineer - XG Gold Solution Partner since 2005
Thanks for your response, please let me clarify.
We do not see a way to remotely access the RED to forward the ports for web access from behind the RED (where the media server sits) to the public IP. Our goal is to get access to the public IP assigned to the site where the RED sits. We need access without going through the VPN.
I think what you are asking is if you can forward specific ports on the RED's public IP to the server on the inside of the RED? What consumer routers call "Port Forwarding?"
RED is strictly a VPN router with no local management capability. so I don't believe you can. If you want to do more then just VPN, you need to look into a full UTM device.
The RED is an extraordinary device. It can do its magic even from inside a router. Please explain what device you have on the Internet side of your RED.
Cheers - Bob
Sophos UTM Community Moderator Sophos Certified Architect - UTM Sophos Certified Engineer - XG Gold Solution Partner since 2005
BAlfson, client side network from outside goes: Time Warner router --> RED --> HP mediasmart running windows home server.
Red vpn from president's home network to Astaro UTM at the Office
We were looking to hopefully drop a switch in and connection the WAP and all client machines except media server through the red and wedging the mediaserver to a port on the Time Warner router enabling port forwarding on the time warner router to pass http traffic hitting the home IP through to the server which is handing out a WHS access page.
It's still not clear what you have or what you want to do. I think that once you have a clear definition, the solution will be obvious to you. What is the Time Warner router? Is the mediaserver intended to provide access to anyone/anything outside the home, or only inside? What WAP is to be used? Should all of the PCs in the president's home have access to the RED tunnel?
Cheers - Bob
Sophos UTM Community Moderator Sophos Certified Architect - UTM Sophos Certified Engineer - XG Gold Solution Partner since 2005
This description (sent after my initial response) makes a bit more sense.:
We were looking to hopefully drop a switch in and connection the WAP and all client machines except media server through the red and wedging the mediaserver to a port on the Time Warner router enabling port forwarding on the time warner router to pass http traffic hitting the home IP through to the server which is handing out a WHS access page.
To understand you correctly, you have a RED device hanging off a Time Warner Modem (Cable or ADSL?). You want to setup the network so that the Media Server is accessible from the web (via a public IP.). At the same time the RED needs to also provide VPN capabilities back to head office for this exec.
Correct?
Questions: Is this router from Time Warner just a modem (hands out public IP's and that's it) or is it one of these residential gateway devices that has the router, wireless(sometimes), and modem all rolled in one? Does the HP device have more then one network interface?
If I'm right about the first part, I have some ideas on how to tackle this, depending on the other two questions.
we have a time warner gateway, then the RED, then an Asus Router that distributes wireless and routes traffic. HP mediaserver sits behind the asus router. The HP media server acts as windows home server and feeds a page through. Im sorry but I do not have the resources to clarify further.
