Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 2 subscribers
  • Views 2089 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

PAT on Red

jeanchye_01
hi 

Does port adress translation work for device connected behind RED ?
Here what i want to do (see  pictures)

Red devices will be on transparent / split mode
Same lan will be provided by the routeur dhcp to both lan behind the red devices

Thanks,


This thread was automatically locked due to age.
  • 0
    Jean, let me restate that to be sure I understand.

    Clients out on the Internet want to connect to a server in a LAN behind a RED in Transparent/Split where the RED configuration has only "Internal (Network)" in 'Split Networks'.

    If that is correct, then there should be no problem.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    To Balfson

    Yes .

    - so this mean no problem for port adress translation ex RDP or FTP  ?
    - If the two lan behind the two red devices share the same subnet provided by my router, will they be able to communicate each other without any troubles ?

    Thanks
  • 0
    please,

    Can someone confirm my questions ?
  • 0
    Why are you using the same subnet behind both RED's? Are they bridged to an UTM subnet? If this is at all possible it will surely make everything a whole lot harder to configure (and understand later).

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

  • 0
    There are two switchs because network is splitted beetween two far rooms.
    These two rooms need to communicate each other and i want them to be on the same network.
    Also there are already some PAT to servers on both rooms on the router configuration and i prefer avoid to change .

    What do you mean by "Are they bridged to an UTM subnet?" 
    Lan behind the red devices will only access to the networks define on "Split Networks" on the remote UTM

    In "Transparent/Split"  mode , red devices should get their IP adresse from the router they are plugged and same thing for devices behind reds.

    So if i plug two red devices , same network will be display through theses.
    There should be no problems technically , just want to be sure that this configuration can work.
  • 0
    If you want all the networks in the same subnet you should create a bridge including 1) the UTM LAN, 2 RED 1 network an 3 RED 2 network.
    Next you will need to create a firewall rule allowing traffic over the bridge.

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Unfiltered HTML