Good Day!
Here's the scenario. We got four Management Console on four different network zone. One of the Management Console will connect to the internet to Update and the others will connect to the Management Console with internet access. I saw the guide from sophos: https://docs.sophos.com/esg/enterprise-console/5-5/help/en-us/pdf/sec_ag.pdf but I there's no indications of firewall rules/ports to allow.
The questions are
1. What protocol/port must be allowed to the firewall of the management console connected to the internet?
2. Which protocol/port must be allowed to the firewall of each management console without internet access?
My guess is that: The management console that is connected to the Internet must allow HTTP (outbound) and SMB/NetBIOS (445/137-139) (Inbound)
The management consoles that are not connected to the internet mus allow HTTP (outbound) and SMB/NetBIOS (445/137-139) (outbound).
Please help :) Thanks!
This thread was automatically locked due to age.