8800NL and Dedicated Firewall

[steveyg_uk]

Hi,

Problem:- Looking to use a dedicated firewall - SOPHOS UTM Home Edition.

Background:- Sky Fibre Direct Connection NOT USING BT MODEM.
WAN connection profile = IPOE
Router = 192.168.1.254
WAN Sophos UTM = 192.168.1.100 / 24
LAN Sophos UTM = 192.168.0.1 / 24


Thoughts:-
Do I disable Firewall and Enable LAN FIREWALL? If so, how do I specify which firewall to use?
Or
Do I follow the bridge guide? If so, will this work with IPOE, as instructions seem to be only for PPPOA >> http://www.broadbandbuyer.co.uk/feature ... dged-mode/



Thank you.

Steve.

[billion_fan]

Hi,

Problem:- Looking to use a dedicated firewall - SOPHOS UTM Home Edition.

Background:- Sky Fibre Direct Connection NOT USING BT MODEM.
WAN connection profile = IPOE
Router = 192.168.1.254
WAN Sophos UTM = 192.168.1.100 / 24
LAN Sophos UTM = 192.168.0.1 / 24


Thoughts:-
Do I disable Firewall and Enable LAN FIREWALL? If so, how do I specify which firewall to use?
Or
Do I follow the bridge guide? If so, will this work with IPOE, as instructions seem to be only for PPPOA >> http://www.broadbandbuyer.co.uk/feature ... dged-mode/



Thank you.

Steve.

It all depends as Sky use option 61 Client ID authentication, if your firewall doesn't support this option it can't establish a PPP connection. So you can't pass the WAN IP straight over to your firewall (hence you will be running double NAT, the billion will be running NAT and also you firewall)

LAN side firewall will not be needed this feature is more for group isolation. (I would leave the WAN side firewall on found on the WAN interface page, to stop recursive DNS attempts)

[steveyg_uk]

Thank however my connection is IPOE?

[billion_fan]

Thank however my connection is IPOE?

Yes I know that, hence your firewall will need to support IPOE with client ID option to pass authentication