This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Newbie to Sophos needs a little help

Hey all, this is my first post Slight smile

I think i am missing something and need a little guidance on how to enable access to the sophos gui on the lan side from my main PC within my current setup. 

The setup (see pics)

Router -> Sophos XG -> Core Switch -> VLANS (APs/Comps/Etc)

I've setup rules to allow ping/DHCP etc through all connections and i have setup rules to allow Main PC (192.168.69.107) access to 192.168.67.9 on port 4444.

I can ping any gateway on the Router (192.168.67.2 and 192.168.69.2) from the main PC

IF i ping the Sophos 192.168.67.9 (LAN) i get no response, but if i ping it from the WAN side (via routers ping tool) i get a response. So the IP is accessible only from the WAN side.

I can see in the logs, that the incoming request is accepted, but the return journey is denied, despite being a rule in place.

Rule

It looks like the Sophos IP 192.168.67.9 is not accessible from the LAN side. I think the networking is setup correctly, i can now access different vlans and everything is talking to each other (provided there is rule in place to allow it)

How do i add another IP on the bridge pair or expose the Sophos to the LAN side? (preferably on the 192.168.67.0 vlan)

I've tried all sorts and it keeps resulting in failure, any ideas would be most welcomed

Thanks for your time



This thread was automatically locked due to age.
Parents
  • Hi,

     Avery complex setup. Are you using https://firewall address:4444

    ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

  • Hi Ian, thanks for your quick reply.

    Yes i'm using: https://192.168.67.9:4444/ from my main PC. 

    I can't ping 192.168.67.9 from my pc (though can ping everything else on that subnet or any other) It's as if that IP isn't accessible on the LAN side.

    I'm very new to sophos, so i'm struggling a bit

  • Hi,

    what's your internet uplink/downlink speed on the WAN-side of your router?

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

  • Hi Philipp

    That depends, currently running two 4G connections due to the rural location and atrocious hard-line broadband. Separately they are between 50-70mbps down and 25mbps up, but bonded it can be up to 120mbps down with wan smoothing (on a good day) and up to 50mbps up. Nothing epic yet, no 5G yet or fibre here. Was looking at a starlink option.

Reply
  • Hi Philipp

    That depends, currently running two 4G connections due to the rural location and atrocious hard-line broadband. Separately they are between 50-70mbps down and 25mbps up, but bonded it can be up to 120mbps down with wan smoothing (on a good day) and up to 50mbps up. Nothing epic yet, no 5G yet or fibre here. Was looking at a starlink option.

Children