I have Photocopiers set up on static IP Addresses on my Sophos XG 135.
They are on lease with a company that has a URL for them to be in contact with in order for them to send new cartridges etc.
So I have set up a firewall rule allowing the LAN IP's to allow all traffic in and out to any WAN address.
Furthermore I have set up the URL address in the web exceptions.
However, neither of these have allowed the copiers to contact the URL in question.
Is there any way to allow a certain URL to contact a LAN IP range?
Any other suggestions?
Thanks in advance
please check the logviewer to determine which ports your photocopiers are using.
the Source Port seems to vary at every request.
The Destination port is 443, with one occation of 61351
Are you using dpi or web proxy? If dpi tr6 the web proxy with allow all and no decrypt.
I have tried both and neither seem to work.
The log suggests that the connection is being allowed, however when I do the manual test on the photocopier itself it fails.
Adding to what rfcat_vk has suggested.
If you enter the URL in question from the XG itself, from the backend what do you get? This command needs to be run from the advanced shell (5>3)
# wget http://ipfortheprinters.com/
# cat index.html
Try also adding an exception to the DPI engine for the IP of the Printers.