Configuring VPN Remote Access for the first time on your Sophos XG Firewall? Check out this useful Community post!
We'd love to hear about it! Click here to go to the product suggestion community
I have some doubts about configuring DNAT rules on a Sophos XG. Currently we're on a migration firewall process checkpoint to sophos. According with the information all the public IP pool is configured on a checkpoint firewall to publish services of our client, but yesterday we start to configure DNAT rules to migrate the same rules of checkpoint, the case is when we do this, all the published services of checkpoint started to down.
Here is the doubt, Why did these services start to fail, since the public IPs were not configured in the interface as aliases on sophos?. All the Public IP was configured as a host object on the firewall but are not alive and the rules are all disabled.
Waiting for your early reply.
IPs, which the XG Firewall should respond, needs an alias on the interface.
I am not sure why you asking for the reason why your CHECKPOINT firewall services stopped working when all you did was add objects to the XG.
It is possible that the ISP router registered the Sophos WAN interface MAC address with it when it was plugged in and tried to send the traffic to that MAC address.