This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Bridge mode

Hello,

I am trying some experiment with a virtual UTM instance. I was trying to have it running in Bridge mode. I want to use put the UTM for virus scanning and URL filtering. If it is possible I would like to use the DHCP from my router; but I do not know if that is possible. Apart from that I still am not able to browse the internet. I am also not able to do NSLOOKUP from the Tools-section (on the UTM).

 

I'll try to describe my situation as best as possible:

- I have 2 NIC's in my (virtualbox) virtual machine.

- 1 of those NIC's is connected to a virtualbox internal lan.

- 1 of those NIC's is connected through Wifi.

- Another virtual machine (windows 7), is connected to that same virtual internal LAN. I am able to connect to my machine (10.0.0.1:4444).

- I have changed the interface that was originally known as 'Internal', in the Sophos UTM to Bridged Ethernet, and selected both interfaces.

- For testing purposes I configured that all ports from/to any source/destination are open.

- I have tried using DHCP server from the UTM and using DHCP relay.

- I have set my ISP's native router as forwarder for DNS requests.

- I have allowed the internal network (bridged interface), as a network to use web filtering and DNS.

- I have tried Transparent and Full transparent modes.

- I have tried giving the bridged interface a available IP address in the same range as my ISP's router.

- I have configured masquerading on/off.

- I have tried setting a default gateway (router ISP).

- The router does receive an IP from the router.

 

However I still don't have an internet connection. Must I create NAT-rules? Perhaps this is a very obvious question/anwser. I am just trying to learn some networking-stuff here.



This thread was automatically locked due to age.
  • Bram, if the following doesn't get you there, please provide a simple diagram with IPs so we can "see" your topology.

    This should be straightforward...

    1. Disable any DHCP service you have configured in 'Network Services'.
    2. Bridge the two NICs in an Interface definition with 'Dynamic IPv4' and 'Default gateway' both selected.
    3. Configure Web Filtering in Full Transparent mode.
    4. For traffic other than web, add an 'Any -> Any -> Any : Allow' firewall rule.

    Did that get you where you wanted to go?

    Cheers - Bob
    PS Moving this thread to the Web Protection forum.

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA