Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 39 subscribers
  • Views 1977 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

WAF issue

lauwiks Cutman

Hello everyone ,

I have a problem with my WAF rules.
It no longer works, the problem happened all of a sudden without me changing anything on my configuration.
Only forward port rules work correctly.
I have already rebooted my router.
I even deleted a WAF rule and recreated it.
I even just switched to sophos xg 19 hoping it works.
Do you have an idea ?



This thread was automatically locked due to age.
Parents
  • 0

    Hi lauwiks Cutman

    Please check the following :

    • Check that the WAF is running: # service WAF:status -ds nosync
    • Do a manual restart of WAF: # service WAF:restart -ds nosync
    • Record the error messages in the logs if reverseproxy cannot start.
    • Check if the network socket is created for the WAF (netstat natup | grep httpd).
    • Verify that no other service is running on Port 80 or 443 in the UTM.

    You can view the WAF log files from the following locations:
     

    • Sophos Firewall - go to Log viewer at the top of the screen and then select Web Server Protection from the drop-down menu.
    • Advanced Shell - go to /log/reverseproxy.log
    • Live log view - tail -f /log/reverseproxy.log

    Thanks and Regards

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • 0

    Hi lauwiks Cutman

    Please check the following :

    • Check that the WAF is running: # service WAF:status -ds nosync
    • Do a manual restart of WAF: # service WAF:restart -ds nosync
    • Record the error messages in the logs if reverseproxy cannot start.
    • Check if the network socket is created for the WAF (netstat natup | grep httpd).
    • Verify that no other service is running on Port 80 or 443 in the UTM.

    You can view the WAF log files from the following locations:
     

    • Sophos Firewall - go to Log viewer at the top of the screen and then select Web Server Protection from the drop-down menu.
    • Advanced Shell - go to /log/reverseproxy.log
    • Live log view - tail -f /log/reverseproxy.log

    Thanks and Regards

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

Children
Unfiltered HTML