Once you go with a UTM firewall, you never go back - Overclock.net - An Overclocking Community

Forum Jump: 

Once you go with a UTM firewall, you never go back

Reply
 
Thread Tools
post #1 of 13 (permalink) Old 05-23-2017, 05:41 PM - Thread Starter
New to Overclock.net
 
aweir's Avatar
 
Join Date: Oct 2005
Location: KY
Posts: 3,847
Rep: 254 (Unique: 189)
I mean you could, but why would you want to? when you finally get it configured the reward is worth the effort.
I had a some spare parts lying around and decided to put them to use. I really really wanted to try out one of the many UTMs available. The few that I had in mind were

ClearOS
Simplewall
OPNsense

and

Sophos XG
or Sophos UTM Home

Oh, and pfsense

I liked the dual antivirus engines of Sophos (Avira/Sophos) and so I went with that. After spending half a day installing Sophos UTM and Sophos XG multiple times trying to decide which one i liked more, I settled on UTM.

After the initial install, clients don't "see" the default gateway that is the firewall itself. I somehow managed to log into the damn interface after I corrected a subnet mask issue. The firewall was configured for a 255.255.255.0 subnet mask but Windows was reporting 255.255.0.0, and I was getting an APIPA address on all my Windows clients. Some other quirks were that the firewall gives itself an IP address/default gateway of 192.168.2.100 which is in the same subnet as the DHCP pool (192.168.2.1-254) So I changed the DHCP pool to 192.168.2.100-254.

But enough of that.....here's a screen shot of the mouth-watering dashboard after a whole day of blood, sweat, and tears.



Some features that this and other UTMs offer (for the average home user) is gateway antivirus, malicious URL blocking (web filtering), a full intrusion detection and prevention system (port scan/flood detection) and having SSL, IPSec, VPN servers hosted right on the firewall itself.
The interface is fantastic, with more eye candy than an internet infographic.




My system is pretty low end, but faster and has more memory than any router you can buy.

CASE: Rosewill SRM-01 ($30)
MOBO: open-box MSI A68HM-E33 V2 Realtek GBe(-$10 after rebate) yes, it was free, and then a $10 rebate on top of that with the infamous Microcenter motherboard+CPU combo deals
CPU: AMD A6 ‑7400K ($59)
RAM: 4Gb DDR3 ($30)
SSD: Silicon Power 120Gb SSD
Ethernet: Realtek GBe PCI-e

Router: TP-Link WDR 4300 Gigabit.
With DD-WRT installed and used as switch/wireless AP
aweir is offline  
Sponsored Links
Advertisement
 
post #2 of 13 (permalink) Old 05-24-2017, 01:27 PM
New to Overclock.net
 
Join Date: May 2008
Posts: 2,211
Rep: 170 (Unique: 132)
hasn't the UTM9 been discontinued and replaced with the garbage of the cyber roam XG's?

Quote:
Originally Posted by thydevil go_quote.gif
AWESOME. Buy 1600 point card = $19.99. Buy two 800 point cards = $19.98
Save big.
Quote:
Originally Posted by someone153 go_quote.gif
Shhhh! Don't tell Microsoft. They might discover our secret.
>XXX
Ulquiorra is offline  
post #3 of 13 (permalink) Old 05-25-2017, 08:30 AM - Thread Starter
New to Overclock.net
 
aweir's Avatar
 
Join Date: Oct 2005
Location: KY
Posts: 3,847
Rep: 254 (Unique: 189)
No, Sophos has said the UTM will be supported for years to come.
https://www.sophos.com/en-us/lp/utm-upgrades.aspx

So far the UTM is working well, but I haven't messed around with creating firewall rules yet. The only issue I had so far was the web filtering of "web ads" being too aggressive and blocking https sites from loading images.

If I decide to keep the UTM permanently, and it looks like there's no reason not to, I might invest in a fanless mini PC, but most of them are bare bones and too expensive. Right now it's still better just to build yourself a spare PC if you have the room and don't mind the noise.

Most of the el-cheap-o mini PCs have dual core Celeron 1.8GHz CPUs, and if you want something faster, you have to either sacrifice the HDMI port and have none at all, or you get one with 6 com ports instead (I really don't understand it at all). the pricing for the faster mini PCs is outrageous considering most of them are bare-bones, and you need an expensive msata ssd because they "can't boot" from a 2.5" SSD.
aweir is offline  
Sponsored Links
Advertisement
 
post #4 of 13 (permalink) Old 05-25-2017, 03:40 PM
New to Overclock.net
 
Join Date: May 2008
Posts: 2,211
Rep: 170 (Unique: 132)
ahhhh cool!

The mini dells work as good little firewalls, i5 + 4 gig of ram, virtually silent! Ones been my gateway for the past 2 years

Quote:
Originally Posted by thydevil go_quote.gif
AWESOME. Buy 1600 point card = $19.99. Buy two 800 point cards = $19.98
Save big.
Quote:
Originally Posted by someone153 go_quote.gif
Shhhh! Don't tell Microsoft. They might discover our secret.
>XXX
Ulquiorra is offline  
post #5 of 13 (permalink) Old 05-25-2017, 04:05 PM
New to Overclock.net
 
Rndomuser's Avatar
 
Join Date: Mar 2013
Location: NY/NJ/FL
Posts: 306
Rep: 10 (Unique: 10)
Yea, UTMs with nice, user-friendly GUI are pretty fun to screw around with, especially compared to extremely simplistic functionality of the "stock" OS/controller on all of the "consumer-grade" routers or not-so-user-friendly pfsense wink.gif Sophos UTM is pretty good, though there's also Untangle which is slightly more user-friendly. The Untangle is not completely free (like Sophos UTM, which is I believe permanently free for up to 50 IP addresses for home users) but the price for home users ($50/year) is still pretty reasonable considering the amount of features and the antimalware engine (by Bitdefender) it uses for scanning the traffic.

Both of these (Sophos and Untangle) ran perfectly fine when I was playing with them using one of those fanless Celeron J1900-based systems (with Intel NICs) made by Qotom (yes, these don't have HDMI ports but I didn't really need them).

Rndomuser is offline  
post #6 of 13 (permalink) Old 05-26-2017, 02:10 AM - Thread Starter
New to Overclock.net
 
aweir's Avatar
 
Join Date: Oct 2005
Location: KY
Posts: 3,847
Rep: 254 (Unique: 189)
Quote:
Originally Posted by Ulquiorra View Post

ahhhh cool!

The mini dells work as good little firewalls, i5 + 4 gig of ram, virtually silent! Ones been my gateway for the past 2 years
Cool ... which one are you using?
aweir is offline  
post #7 of 13 (permalink) Old 05-26-2017, 02:11 AM - Thread Starter
New to Overclock.net
 
aweir's Avatar
 
Join Date: Oct 2005
Location: KY
Posts: 3,847
Rep: 254 (Unique: 189)
Quote:
Originally Posted by Rndomuser View Post

Yea, UTMs with nice, user-friendly GUI are pretty fun to screw around with, especially compared to extremely simplistic functionality of the "stock" OS/controller on all of the "consumer-grade" routers or not-so-user-friendly pfsense wink.gif Sophos UTM is pretty good, though there's also Untangle which is slightly more user-friendly. The Untangle is not completely free (like Sophos UTM, which is I believe permanently free for up to 50 IP addresses for home users) but the price for home users ($50/year) is still pretty reasonable considering the amount of features and the antimalware engine (by Bitdefender) it uses for scanning the traffic.

Both of these (Sophos and Untangle) ran perfectly fine when I was playing with them using one of those fanless Celeron J1900-based systems (with Intel NICs) made by Qotom (yes, these don't have HDMI ports but I didn't really need them).

I'll have to check that out.
aweir is offline  
post #8 of 13 (permalink) Old 05-26-2017, 05:48 PM - Thread Starter
New to Overclock.net
 
aweir's Avatar
 
Join Date: Oct 2005
Location: KY
Posts: 3,847
Rep: 254 (Unique: 189)
Speaking of Untangle, I just came across some bind-blowing news that you can install Untangle on a Linksys WRT1900ACS router.

https://www.untangle.com/firmware/

I'd love to try this out on my Linksys router next week that I picked up refurbished for $100.
aweir is offline  
post #9 of 13 (permalink) Old 05-26-2017, 06:20 PM
New to Overclock.net
 
Rndomuser's Avatar
 
Join Date: Mar 2013
Location: NY/NJ/FL
Posts: 306
Rep: 10 (Unique: 10)
Yea, you can do that with Linksys' router, but I'm not sure how well it'll perform - the CPU in it is pretty weak, same goes for using slow USB flash drive as a permanent storage device...

But hey, the whole set-up is definitely cheaper than ~$200 Qotom fanless PC + something like $100+ dedicated Wi-Fi AP.

Rndomuser is offline  
post #10 of 13 (permalink) Old 05-26-2017, 06:36 PM
Tech Enthusiast
 
deafboy's Avatar
 
Join Date: Jan 2008
Location: San Diego
Posts: 12,031
Rep: 431 (Unique: 329)
Pretty interface...

I've been on pfsense for a while and love it, maybe have to checkout some other options and play around and see if it'd be worth making the switch when I roll-out my new box.

Absolutely love the features. anti-virus, adblock, caching, security, vlans, etc... all good fun stuff.

IN HONOR OF SYRILLIAN, R.I.P.
ASUS ROG Rampage IV Black Owners Club || PNW Overclockers Club
BMW TJ07 Build Log -- The Ultimate Cooling Machine
2 year anniversary In Remembrance of a Great - RIP Syrillian
Overkill FreeNAS
(11 items)
Play Server
(10 items)
CPU
Intel i7 3930k @4.8-5.2
Motherboard
Asus Rampage IV Black Edition
GPU
nVidia Titan XP
RAM
Corsair Dominator Platinum 32GB
Hard Drive
Intel 750 400GB
Hard Drive
Intel 750 1.2TB
Power Supply
Corsair AX1200i
Cooling
2x Swiftech D5 w/ EK Dual Pump Top
Cooling
XSPC EX480, EX360 & 2x Phobya 1080
Cooling
EK Supremacy EVO CPU Block
Cooling
EK Advanced 250mL Res
Cooling
Lamptron FC-5V2
Cooling
EK Rampage IV BE Water Block
Cooling
Copper Tubing w/ push fittings
Cooling
EK-FC Titan XP Copper/Acetal
Case
Silverstone TJ07, heavily modified
Operating System
Windows 10 Pro
Monitor
Samsung U28D590D 4K
Keyboard
Leopold Otaku
Mouse
Corsair M65
Mouse
Corsair MM600
Audio
Sennheiser HD595 / HD428 / HD280
Audio
Corsair SP2500
Other
Mellanox Connectx-2 10Gb SFP+ NIC
CPU
E5-2670v1
CPU
E5-2670v1
Motherboard
Supermicro X9DRL-iF
Hard Drive
12x HGST 4TB CoolSpin
Hard Drive
6x WD Red 8TB
Hard Drive
SanDisk Ultra II 960TB SSD
Power Supply
Corsair AX750
Cooling
2x Noctua nh-u9dxi4
Cooling
3x Scythe AP-30
Case
Norco 4224
Operating System
FreeNAS
CPU
Intel Xeon L5640
CPU
Intel Xeon L5640
Motherboard
Dell R710 Mobo
RAM
Hynix 144GB DDR3 ECC PC3L-10600R
Hard Drive
Intel X25-M G2 80GB
Power Supply
Redundant 840W PSU
Case
Dell 710 2.5" - Google Search Appliance
Other
Mellanox Connectx-2 10Gb SFP+ NIC
Other
Dell Perc H700 Raid Controller
Other
Dell iDRAC6 Enterprise
▲ hide details ▲


deafboy is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off