I sure hope this isn't a duplicate. I have a client who has UTM at his sites. Each site has two internet circuits, from to difference providers, and each site has the same two providers as the other sites. He would like to pin a RED using the first vendor's internet circuits, and pin a second so the red will be built only on the second internet company's circuit. While you can control the destination of the RED, it doesn't appear that you can control the source interface for a given RED. I am suggesting that it would be possible to specify which outbound interface is used on a per RED basis.

For smaller independet companys it would be great to support a "router aon a stick" solution. I imagine a RED device only connected to any network and have two virtual interfaces, one for the uplink configuration and the second for the remote interface. With such a solution it is possible for the independent company to route all traffic supposed for the tunnel to the RED remote interface and the Tunnel would be established with the first interface. I could also imagine an alternative to Standard/Unified, Standard/Split and Transparent/Split. It would be something like "Routing/Split" where you need two interfaces one for uplink and a second for Routing/Remote Interface. In this mode only the the uplink interface only manages the tunnel and does not forward any other traffic. Rhe remote interface also only handels routet packages for the networks allowed for the RED device.

RED device does not currently bridge the existing 'internal' interface on the UTM. when you set it up you have to create a seperate ip from the 'internal' dhcp. therefore it does not show up on the same LAN. it is on a seperate LAN.

bridge to lan feature like the AP devices would be a great addition. this way everything is on the same network and can view networked drives or computers or shares.

i have made a workaround to fix it for now until there is an update. it is as follows.

***make backup prior***

1: add red manually.(client management) not with the deployment helper.

1a: make sure it is not turned on under red client management

2: if you have an 'internal' interface on ethX under 'interfaces and routing', you must delete this interface and everything that is associated with it.

3: you should now have two hardware you can bridge.(redsX and ethX)
3a: create new interface with type as 'ethernet bridge' and under hardware check those two devices. (ethX and redsX)

4: now create a new DHCP for whatever you named your bridge to.(br0).
4a: if you did already assign hosts and static ip under your previous internal you can just use the same subnet and gateway ip group.(10.10.100.1/24)

5: firewall rules now all need to be redone. for very short period you need to add a rule for 'bridge network'-any-any to make sure everything works on the red side then start making your new rules.

all in all this was a pita but was very successful because i could not wait the 12 hour wait time for tech to call/enough info on the web for this solution.

This feature is critical 1-2 for us to keep using the Sophos RED box

We really need some sort of tool to test why RED 15 boxes is not able to connect to the ore SG210 server

We have been using the RedAlert.exe program so the IT guys can use their own computer to see why and where there is a misconfiguration in there firewall.

I need to mention that we are using the RED box at a mean to connect to equipment that we have sold to customers so the IT people onside are not familiar with
the Sophos RED box and they are also always locate in different countries so it is very expensive for us to travel onside to help them solve the problems.

Company: Carometec A/S

Contact: Nicklas Uhlen

Sophos Partner (if applicable): Zispa ApS

Sophos Product: RED 15

Sehr geehrte Damen und Herren,

wir haben Ihr Produkt die UTM9 in vollem Umfang im Einsatz. Ebenfalls nutzen wir die Red für die Anbindung im Home-Office sowie in den Niederlassungen.

Im täglichen Umgang fehlt mir in der „RED-Verwaltung“ – „Übersicht“ die Möglichkeit das Feld „Kommentar“ – welches unter „RED bearbeiten“ aufgeführt ist, mit anzuzeigen.

In der Übersicht wäre somit Details welche im Feld Kommentar hinterlegt sind direkt sichtbar. Wir hinterlegen dort z.B. wo sich die RED befindet und wer diese im Einsatz hat.

Sicherlich ist dieses Feld einzublenden eine Kleinigkeit. Ich würde mich daher freuen, wenn dieses im nächsten Update als zus. Information auf dem Reiter „Übersicht“ im Bereich „RED-Verwaltung“ mit angezeigt würde.