Hi,
i am new to the untangle, i have installed the server & itz working perfectly, but since my network has got PIX firewall placed in between Internet Router & PIX firewall, i need to make Untangle to act as Bridge, so can some one help me in configuring this Untangle to act as Bridge.

all you need to do is select bridge in the wizard, or remove router from the rack if you're past the wizard.

then all the interfaces will share the same public address/netmask, and all traffic on that network will be bridged.

be careful putting the untangle server as a bridge outside your NAT firewall because all computers will look like the same public IP.
(makes reports suck and attack blocker not very useful)

Thanks domirris,
actually during the installation time, my display doesn't support completely, i was able to install the Untangle by seeing only half of the screen was being displayed, which i managed some how. so during the installation of Untangle i think there it might have got an option which i might have missed out by selecting BRIDGE. later i accessed the Untangle via Web Browser & installed the other features like SPAM,SPYWARE etc.. now your reply says that by removing the ROUTER in the rack, the Untangle acts as BRIDGE, so certainly will do that once i go to office tomorrow & will give you feed back on this.


Note: i was understood that by removing the ROUTER in the rack will act as BRIDGE, in this case, my Untangle Server will have only 1 ip address & that ip should will the same for the both the NIC,am i right with that?

Note: i was understood that by removing the ROUTER in the rack will act as BRIDGE, in this case, my Untangle Server will have only 1 ip address & that ip should will the same for the both the NIC,am i right with that?

correct! :D

Hi Dmorris,
i tried installing the Untangle with Bridge newly & also removed the Router option in the rack in an existing untangle,i couldn't reach the untangle via network. any help or suggestion?

If you are unable to reach the Untangle via the network, you can always use direct monitor, keyboard, and mouse.

Hi Dmorris,
i tried installing the Untangle with Bridge newly & also removed the Router option in the rack in an existing untangle,i couldn't reach the untangle via network. any help or suggestion?

ah yes, if you were connecting remotely to an internal IP (192.168.1.1) that IP is now gone because its a bridge.
You'll have to connect to the external IP or with a keyboard/mouse as gotkimchi was saying

you have to use https://ipadress_of_external_interface ( that is if remote administration is allowed )

i have disabled the routing option(it says it will act as Transparent Bridge), but i couldn't ping the external ip configured in my Untagle, so i went to the "Config" ----> "Networking" ----> "Connectivity Test" i clicked, it says "Success" & the network works(i could able to reach the Untangle from my PC also), but when i restart the Untangle, the connectivity goes between my PC & Untangle, so again i need to enable to switch on the "Router" in the Untangle Rack & i have to do the same task as mentioned above, can you make me clear why is that so? is that the normal practice with the Untangle or i am missing something else?

i have disabled the routing option(it says it will act as Transparent Bridge), but i couldn't ping the external ip configured in my Untagle, so i went to the "Config" ----> "Networking" ----> "Connectivity Test" i clicked, it says "Success" & the network works(i could able to reach the Untangle from my PC also), but when i restart the Untangle, the connectivity goes between my PC & Untangle, so again i need to enable to switch on the "Router" in the Untangle Rack & i have to do the same task as mentioned above, can you make me clear why is that so? is that the normal practice with the Untangle or i am missing something else?

Well, if you are trying to reach the Untangle Server from an internal IP (192.168.x.x or 10.x.x.x or something like that) it won't work once you remove the router because your default route is gone.
You'll need to renew your DHCP lease or change your IP settings to use whatever the new network and gateway is.

Last & Quick Question,
i am planning to place the Untangle between the Internet Router & Firewall, next to the firewall will b my office LAN, so is this the right way to implement?
also the ip address configured statically in the external interface will also will b reachable from my LAN for managing the Untangle isn't?

Connectivity would be like this......


Internet---->Internet Router----->Untangle------>Cisco Firewall----->Office LAN.

Since there are multiple interfaces are there in the cisco firewall, which needs to talk to different networks in LAN, i will need to place the firewall 1st which is next to the office LAN as mentioned in the diagram.

suggest me if i am wrong?

this setup will work. internet and filtering will be done. but untangle will not be able to determine clients sitting behind the cisco firewall, specially if it does NAT . Reporting will show only one source and you may end up having problems on custom policies. If you need to use this setup mode and you have the attack blocker module installed, it is recommended to put the cisco's ip on the exclusion list under attack blocker.

I am using in bridge mode and so far I understand that I shouldn't install the router from the rack. What else shouldn't be installed in bridge mode?

Hi,
During the time of installation, it will prompt you to select to act as a Router or Transparent Bridge. If you select Router & later you wanted to act the Untangle as Transparent Bridge, juz switch-off the Router in the Rack, ur untangle will act as a Transparent Bridge. It worked for me in the same way & it is sucessfull for me.