One network card can be configured with additional IP addresses (also called aliases). This function allows you to manage multiple logical networks on one physical network card. It can also be used to assign further addresses to a Sophos UTM running NAT (Network Address Translation).
To configure additional addresses on standard Ethernet interfaces, proceed as follows:
On the Additional Addresses tab, click New Additional Address.
The Add Additional Address dialog box opens.
Make the following settings:
Name: Enter a descriptive name for the new additional address.
On interface: Select an interface from the drop-down list to which the address is to be assigned.
IPv4/IPv6 address: Enter the additional IP address of the interface.
Netmask: Select a netmask from the drop-down list and/or enter an IPv6 netmask.
Assigned to node: This option is only available when Sophos UTM is set up in a cluster. Select a node from the drop-down list for the additional address. If you assign an additional address to a HA/Cluster node, then the traffic will be send to this dedicated node for monitoring. This can be useful to monitor individual nodes of a HA/Cluster.
Note – All traffic for the additional address will be send exclusively to the dedicated node. If the node is down, no other node will handle the traffic for the additional address.
Comment (optional): Add a description or other information.
The system will now check the settings for validity. After a successful check the new interface will appear in the interface list. The interface is not yet enabled (toggle switch is gray).
Enable the additional address.
Click the toggle switch to activate the additional address.
The additional address is now enabled (toggle switch is green). The additional address might still be displayed as being Down. The system requires a short time to configure and load the settings. Once the Up message appears, the additional address is fully operable.
To either edit or delete an additional address, click the corresponding buttons.