Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 20 replies
  • Subscribers 41 subscribers
  • Views 4639 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SD-WAN policies my experience so far

rfcat_vk

Hi folks,

I have been experimenting with the SD-WAN pouches since yesterday after Luk and Lucar kindly explained what i was doing wrong.

So far

1/. 1 policy working

2/. many attempts at creating two new policies covering different rules failed.

I had to do a restore after I broke something, not sure what.

What I have found is that the SD-WAN policies do not know how to handle ports like 8000, 5222. The SD-WAN policies do not have a problem handling HTTPS, HTTP and SIP.

If I delete the SD-WAN policy for 8000 and setup a linked NAT, traffic resumes, the same for the 5222 firewall rule.

Thoughts and suggestions. Am I expecting too much?

Ian



This thread was automatically locked due to age.
Parents
  • 0

    I also updated to V18 yesterday and now I let the migrated Linked SD-WAN rules work for the first time since they all work.

    Since you can easily switch between 17 and 18, I will start the days again with 17 and create 10 dummy rules there. These will be migrated and I can adjust them in the future if necessary. So I have 10 dummy SD-Wan rules for the first time :)

    Has the advantage for me that I can continue to work only in the firewall rules, until the V18 is further optimized.

  • 0 in reply to TimFranken

    Hi Tim,

    swapping  back and forward will break your APs each time if you have any installed.

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 EAP

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    No I don't use the WLAN function of Sophos at all, we have a UniFi Wlan network here which I only connected to the Sophos network via VPN.

Reply Children
No Data
Unfiltered HTML