Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 3 subscribers
  • Views 6243 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Application Routing

Rex_

I'm placing this in this forum because I didn't know where else to put it.


We have 2 WAN interfaces connected to our UTM (1 x 20Mbit private internet + 1 x 200Mbit public internet). As a government organization, all our traffic from internal clients has to be routed through the private internet. The public internet is used for classrooms & our DMZ.


Last weeks we deployed several new computers and had a Domain Controller crash which caused GPO's not to apply to these new devices. Because of this Windows Update settings were set to default, meaning automatic updates from the internet. All those new computers began retrieving updates through our private internet line instead of WSUS and made it unbearable to work online.


What I'm looking for is a way to route traffic from specified applications to a specific WAN. For example, all traffic from the applications "Windows Update" & "YouTube" should be routed to the public internet WAN instead of being pushed through the private internet WAN.

Is this in any way possible or will this be possible in any future update?



This thread was automatically locked due to age.
Parents
  • 0

    Kevin, I moved your question to this forum as the answer is to use Uplink Balancing with Multipath rules that bind, for example, 'DMZ (Network) -> Any -> Internet' to the "Public" interface.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi Bob

    I already checked those options but I can only select 'Services' there, not 'Applications'. We want to send all traffic from specific applications (eg 'Windows Update') through the public WAN eth4 while still sending another application eg 'Office 365' through the private WAN eth1. In Web Filtering & Application Control there's a full list of Applications, we want to use these to selective route our traffic.

  • 0 in reply to Rex_

    OK, Kevin, I'm moving this back to the Web Protection forum.

    What you want to do isn't possible in the current version of the UTM.  It's an attractive idea to extend the concept of Application Selectors to Multipath rules just as they were added recently (two years ago?) to Quality of Service.  If there's no such suggestion at http://feature.astaro.com, you might want to add your own.  If there is one already, you should add your vote and a supporting comment.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0 in reply to Rex_

    OK, Kevin, I'm moving this back to the Web Protection forum.

    What you want to do isn't possible in the current version of the UTM.  It's an attractive idea to extend the concept of Application Selectors to Multipath rules just as they were added recently (two years ago?) to Quality of Service.  If there's no such suggestion at http://feature.astaro.com, you might want to add your own.  If there is one already, you should add your vote and a supporting comment.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML