Networking FAQs

From UntangleWiki

Contents 1 Does Untangle support dual WAN or WAN failover? 2 How about Open Source software that supports Dual WAN? 3 Where does a third party routers like the Linksys and the Netgear go into my Untangle network? 4 Does Untangle Server use bandwidth throttling? 5 Why would I want to explicitly set the speed of my network cards? 6 What directory services does Untangle Server support? 7 How do I determine the devices that are attached to my network? 8 If I am running NAT, how can I provide access to a web server connected to the internal network? 9 Is it possible to use DHCP without enabling NAT? 10 What is the difference between a DMZ Host and the DMZ interface?

Does Untangle support dual WAN or WAN failover?

Natively, the Untangle doesn't support dual WAN nor WAN failover at this time. We are looking to implement these features in the future. In the meantime, we have tested few SMB products that support these features.

Linksys RV042 ($189.99 cdw.com price as of 09/01/2009)

1. A high-reliability Internet connection-sharing router and 4-port switch for small business
2. Features dual Internet ports for load balancing and connection redundancy
3. Securely connects up to 30 remote office or traveling users to your office network via VPN
4. Advanced SPI firewall protects your PCs from most known Internet attacks

(Taken from Linksys.com)

Netgear FVS124G ($179.99 netgear.com price as of 09/01/2009)

1. Dual WAN support for load balancing and failover
2. Built in four auto-sensing 10/100/1000 Mbps LAN ports offer gigabit connectivity
3. Securely connects up to 25 remote office or traveling users to your office network via VPN
4. Supports both SPI firewall and Denial of Service (DoS) prevention

How about Open Source software that supports Dual WAN?

If you are interested in the Open Source software, you might want to check out Pfsense.

Online tutorial on Pfsense for multi wan. PDF Document

Where does a third party routers like the Linksys and the Netgear go into my Untangle network?

Here is a sample network diagram. Please make sure to that the third party router is doing the NAT (Network Address Translation), and the Untangle is right behind it in a transparent bridge mode. The third party router will handle your dual WAN connection and your WAN failover.

Does Untangle Server use bandwidth throttling?

No. The Untangle Server uses Protocol Control and Web Filter to solve the problem of network congestion resulting from a few users consuming more resources. For more information, go to About Limiting Network Congestion.

Why would I want to explicitly set the speed of my network cards?

Theoretically, you should be able to set the speed of your NICs to "auto" and allow them to determine their optimum operating speed. Sometimes the connection between your NIC and the switch or router that it connects to cannot successfully auto-negotiate. As a result, network speed may be erratic and be far lower than the speed which your cards can operate at. You can sometimes gain extra stability by adding a switch between the Untangle box and its upstream device (cable modem, DSL modem, or router).

What directory services does Untangle Server support?

Untangle Servers provides a Local LDAP and supports Active Directory. Untangle Server supports Kerberos. For more information, go to About User Access and User Authentication.

How do I determine the devices that are attached to my network?

Assuming the Untangle Server is your router, you can locate the list of devices as shown in Assigning Network Computers Static IP Addresses.

If I am running NAT, how can I provide access to a web server connected to the internal network?

1. If the web server is using DHCP, it should be assigned a static address. Go to Assigning Network Computers Static IP Addresses.
2. Map the web server to that IP address as discussed in Mapping Computer Hostnames To IP Addresses.
3. Create a redirect rule for all incoming traffic on port 80 to your web server as discussed in Redirecting External and Internal Traffic.

Is it possible to use DHCP without enabling NAT?

Yes, DHCP can be enabled if NAT is disabled. The DHCP start and end address range must fall into the network that you specify in the Network Configuration page. See DHCP Server.

What is the difference between a DMZ Host and the DMZ interface?

Configuring a DMZ Host redirects all of the traffic destined to the external IP address of the Untangle Server to the Target Address. The "DMZ" interface is a port on the Untangle Server. The Untangle Server acts as a network switch between the External and DMZ interfaces. If you have multiple public IP addresses, then servers that must be accessed publicly and locally can be placed on the DMZ interface. If you only have one public IP address, then using the DMZ host feature is one way to make a machine on the internal network appear like a public server for your network.