This article describes how to set up the Web Application Firewall (WAF) to display a status page that shows current server statistics. You can use this page to help troubleshoot the WAF by identifying processes that are using too much RAM or CPU. It may help discover what web application is having problems or if a client is attacking the site. The following sections are covered:
Applies to the following Sophos products and versions Sophos UTM v9
Before you can access the WAF status HTML page, you must first make a Linux SSH tunnel to the WAF module on the UTM. The method to connect is different for Windows and Linux.
# ssh -L localhost:10000:127.0.0.1:4080 loginuser@IP_of_UTM/SG
As soon as you are connected with SSH you should be able to open the following URLs in your client browser:
The status page shows many details about the Web Application Firewall.
You can get the status page to update itself automatically if you have a browser that supports "refresh". Access the auto refresh shown below:
http://localhost:10000/status?refresh=N N is the time in seconds to refresh the page.
You can use the auto refresh feature here as well.
Shows the state of the real server.
If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article. This is invaluable to us to ensure that we continually strive to give our customers the best information possible.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.