Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Sophos Firewall

Discussions Disable ping and http/https access to Vlan interface IPs?

Sophos Firewall requires membership for participation - click to join

Thread Info

State Verified Answer
Locked Locked
Replies 4 replies
Subscribers 40 subscribers
Views 1578 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Disable ping and http/https access to Vlan interface IPs?

SHtan over 3 years ago

Hi all,

Is it possible disable ping and http/https access to VLAN interface IPs? Is this to be performed via FW rules?

This thread was automatically locked due to age.

Top Replies

FormerMember over 3 years ago in reply to SHtan +1 verified

Hi SHtan , Thank you for reaching out to Sophos Community. You can enable/disable admin service access from SYSTEM > Administration > Device access Add 'Local service ACL exception rule' to allow…

Parents

0 rfcat_vk over 3 years ago

What are you trying to achieve? A firewall rule for the VLAN without the http/s will stop access.

ian

XG115W - v20.0.2 MR-2 - Home

XG on VM 8 - v21 GA

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 SHtan over 3 years ago in reply to rfcat_vk

hey rfcat_vk, I am trying to stop users (in a defined zone: USERZONE) from contacting/accessing the XG210 management page. Moreover, I also want to stop operators (MGTZONE) from accessing the XG210 management page which currently accessible via each VLAN's the assigned interface IP address.
Cancel
Vote Up 0 Vote Down

Cancel
+1 FormerMember over 3 years ago in reply to SHtan

Hi SHtan,

Thank you for reaching out to Sophos Community.

You can enable/disable admin service access from SYSTEM > Administration > Device access

Add 'Local service ACL exception rule' to allow access to the admin services from a specified network/host.

Add local service ACL exception rule
Cancel
Vote Up +1 Vote Down

Cancel

Reply

+1 FormerMember over 3 years ago in reply to SHtan

Hi SHtan,

Thank you for reaching out to Sophos Community.

You can enable/disable admin service access from SYSTEM > Administration > Device access

Add 'Local service ACL exception rule' to allow access to the admin services from a specified network/host.

Add local service ACL exception rule
Cancel
Vote Up +1 Vote Down

Cancel

Children

0 SHtan over 3 years ago in reply to FormerMember

This works great! Thanks again, Yash!
Cancel
Vote Up 0 Vote Down

Cancel