This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Subnets behind RED 15

We are looking to replace use a RED 15 device to connect a remote office, and replace the current site-to-site VPN, (local office SG430, remote office Microsoft TMG). We have 4 subnets at the remote office, and with TMG, we only needed to configure a default route on the L3 switch to get traffic to the TMG server, which handled routing to the internet or over the VPN. I'm wondering how I can direct traffic on different subnets at the remote site, to use the RED. 



This thread was automatically locked due to age.
Parents
  • I'm not certain I "see" your topology, but it sounds like you want to configure the RED 15 in either "Transparent / Split" or "Standard / Split" mode with the home office subnets in 'Split Networks'.  Then, all traffic uor your local subnets will transit the RED tunnel and traffic bound for the Internet will be sent directly by the RED.  Does that sound like where you're headed?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • I'm not certain I "see" your topology, but it sounds like you want to configure the RED 15 in either "Transparent / Split" or "Standard / Split" mode with the home office subnets in 'Split Networks'.  Then, all traffic uor your local subnets will transit the RED tunnel and traffic bound for the Internet will be sent directly by the RED.  Does that sound like where you're headed?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • Thanks for your reply Bob,
    To try to clarify the topology:
    Home Office: VLAN (subnet) 10.1.1.100, 131, 134, 150
    Remote Office: VLAN (subnet) 10.1.1.102, 31, 34, 50
    The remote office has its devices connected to a L3 switch, and it has its own DHCP/DNS

    Preferable, all the traffic would pass through the VPN first as in Standard/Unified, however I suppose my question really comes down to configuring the remote office switch. If I connect one of the LAN ports on the RED to the switch , then only devices on the VLAN I plugged into will be able to get to the RED. I think I would need to configure a default route on the switch for the other VLANs but I'm unsure what address to use. Are multiple VLANs even supported behind a RED 15?
    Feels like I'm missing something obvious :)