We have a Sophos 18.5 firewall. Behind this we have two identical servers (WEB01 & WEB05) running a website. In the WAF rule, I can toggle between the two servers in the "Protected Servers" Web server list just fine and the website continues to work.
We also have a site-to-site VPN to an AWS VPC with full connectivity (all servers at both ends of the tunnel can ping each other).
I went to Protect --> Web server and added a server from our AWS VPC called aws-web1 with an IP of 10.123.60.5.
Then I added this server to the list of protected servers. When I toggle to aws-web1 so that it is the ONLY server checked, the website times out with 503 Service Unavailable, even though if I modify my host file to point to this 3rd web server, I can browse the site just fine. I am connected to the Sophos via client VPN with connectivity to 192.168.1.x and 10.123.60.x networks.
Does anyone know what's breaking here?
This thread was automatically locked due to age.