2

So Sophos UTM (Astaro Gateway UTM) can be virtualized in Hyper-V, VMWare, vSphere etc. Now I'm new to virtualization, so am wondering how the networking would be configured in this situation.

Imagine the following (a very simple setup). A Zyxel router acting as the default gateway, standard ADSL line. This is connected directly via Ethernet to my VHost, Hyper-V in my case. Now I assume I need two virtual network adapters, one which is the "External" interface to the firewall, and the other being the "Internal" interface.

But where does my switch go, since I have 5 machines (or X number of machines). Where is the switch connected, to the internal interface on the VHost? What default gateway do my clients use etc? How would the routing work if these two interfaces weren't bridged since they are virtual networks anyway.

I'm a little confused! Any advice is much appreciated!

Cheers

PnP
  • 1,684
  • 8
  • 37
  • 65

2 Answers2

3

In this case, you need 2 Virtual switches: one for the external network, and one for the internal. You could do it with a vlan, but that has an added securirty concern that is easily solved with 2 virtual switches, so that is my recommendation.

longneck
  • 22,793
  • 4
  • 50
  • 84
0

I would probably skip the Zyxel router or if it's a router/modem, leave it in bridge mode and use it strictly as a modem.

I'd then dedicate an interface on my virtual host as my "WAN" interface, assign that and another virtual interface/vSwitch as the "LAN" interface to my UTM virtual machine, just as you would on any VM you wanted on your physical LAN. You can also trunk VLANs if you have VLAN capable switches, but in the simplest scenario you wouldn't need to.

gravyface
  • 13,947
  • 16
  • 65
  • 100