Results 1 to 3 of 3
  1. #1
    Untangle Ninja
    Join Date
    Jul 2008
    Posts
    1,058

    Default Need help with new installation

    I will be installing UT 6.2 on my new server this week.

    I want to layout our current configuration. anyone can do a whois on my domain so I will include the public IPs we have and make up the internal ones. I want to know what I need to do in UT to configure it properly.

    We currently have a sonicwall connected to the WAN which is a 15Mb LAN connection from our AEA. (isp)

    This connects to a cisco 3570 stack which has all our VLANS.

    For example:

    205.221.92.9 -> WAN -> DMZ 205.221.92.1/24

    Our email and web server is 205.221.92.3 on the DMZ. Our email spam filter system is 205.221.92.10. Our MX record points to the 205.221.92.10.

    We will be using UT for the spam filtering so the .10 will go away. I assume we change the MX record to point to the email server instead and UT will filter on it's way through the DMZ? MX=205.221.92.3?

    Our internal LAN port on the UT box will be 192.168.0.1 which then connects to a port on the Cisco stack with that subnet configured for that port only.

    the internal network consistes of VLANs 1, 2, 3, 4 and etc. 192.168.1.x, 192.168.2,x, 192.168.3.x, 192.168.4.x etc.

    One building is VLAN 3, one is VLAN 4 and etc. The management VLAN for all the cisco stuff is VLAN 2.

    So the LAN interface on the UT is on it's own subnet, then goes to the Cisco stack which has all the VLANS. What do I need to do in the UT? Configure static routes for all the subnets?

    I assume I will still have to do port forwards to the server in the DMZ and firewall rules as well?

    I will need to have this configured as close as possible so when we request the MX record change, we can swap out the sonicwall with the UT in one evening without disruption during the day.

    Thanks!!

    Lannie

    PS was that as clear as MUD?

  2. #2
    Untangle Ninja
    Join Date
    Jul 2008
    Posts
    1,058

    Default

    Code:
    
    205.221.92.9 -> WAN -> DMZ -> 205.221.92.10 Spam box
                     |             205.221.92.3 Email/Web server
                     v
    192.168.0.1 ---> LAN --> 192.168.0.5 Ntop box (hub with LAN port)
                        \
                         v 
       192.168.0.2 -->  Cisco Stack
                        |       |     \
                        v       v      v
                      Vlan1  Vlan2   Vlan3   etc.
             192.168.1.x      2.x     3.x
    From the pic above, I want to eliminate the NTOP box and run it on UT. I will eliminate the Spam box and use UT.

    Lannie
    Last edited by lschafroth; 05-26-2009 at 07:15 PM.

  3. #3
    Untangle Ninja
    Join Date
    Jul 2008
    Posts
    1,058

    Default

    No suggestions, no guidance?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2