Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 14 replies
  • Subscribers 38 subscribers
  • Views 2414 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cannot seem to get Application Filter Firewall rule to work correctly

AllanD

So I attempted to get the application control working based on this article: https://community.sophos.com/sophos-xg-firewall/f/recommended-reads/120242/sophos-xg-firewall-how-to-create-an-exception-in-application-filter   but I could not get this to work.

We have a application from Honeywell that uses multiple outgoing ports, hundreds of them with no set port range, that we need to allow outgoing access.  The application is correctly detected by Synchronized Application Control and I customized it with the full name and categorized it as general business.  I then made a Application Filter with that application in it and allowed then saved it.  Then I made a new firewall rule for it for LAN - All -> WAN - All - All Services and under the application control I put it in.  But the rule is allowing everything outgoing now.

How do I make a firewall rule allowing this application full outgoing ports without allowing anything else?



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Bharat J

    Maybe I'm missing something but I'm not sure what checking the logs will do. We have 20+ firewall rules setup already and we added this at the bottom. But this rule is letting everything out, anything that doesn't match a rule above then matches this (all ports in to out) and the application part isn't doing anything. 

    Am I missing something?  Isn't the point of the firewall being able to identify applications, which it does correctly, so you can then allow or block those applications?  This seems like it should be easy since the application is already identified.

Unfiltered HTML