I have setup my Untangle as a non-transparent mode in conjunction with my Tomato Router.
Here is the setup:
Internet Modem-> (WAN Port) Untangle (LAN Port) -> (LAN Port) Tomato -> Users (192.168.0.0/24)
There are two networks on this diagram. The one provided by the ISP to the Untangle and the private LAN provided by Untangle. I turned off DHCP on Tomato and used Untangle for DHCP. Then, when the users get the DHCP, they also get the gateway to point to Untangle. Tomato is not using the WAN port and has ben demoted to just a simple switch.
Problem: Three things got broken on this setup: OpenVPN (It is hardwire to the WAN port and I must used port 22 over TCP due to a restriction on where I will be connecting from and it is out of my control. So, the OpenVPN in Untangle does not work for me as it is hardwire to port UDP 1194.) , Dynamic DNS and QoS.
My thoughts are that maybe using Untangle as a Transparent Device might help but I have a few questions.
The proposed network will be:
Internet Modem-> (WAN Port: 10.0.0.*) Untangle (Bridged Port) -> (WAN Port: 10.0.0.*) Tomato (LAN Port: 192.168.0.0) -> Users (192.168.0.0/24)
So now the Untangle is behind the WAN port of Tomato. This will bring back to life OpenVPN, Dynamic DNS and QoS. The three are hardwired to the use of the WAN port.
1. Since Untangle is not not part of the LAN network and it is in a different subnet (The one behind the WAN port on Tomato and provided by the ISP).... Can I still allow unique IPs to bypass the Web Filter?
Meaning, Can I allow IP 192.168.0.4 to bypass the Web Filter using the "Edit Passed Client IPs" section using the second transparent option?
2. I assume that the port forward option must be changed to point to the WAN IP in Tomato and then forward the ports again in Tomato towards the final client. Dual NAT... Correct?
Thanks in advanced!
- Untangle NG Firewall
- Untangle IC Control
- Help Me Decide