Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +2 person also asked this people also asked this
  • Locked Locked
  • Replies 11 replies
  • Subscribers 41 subscribers
  • Views 2413 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XGS (19.0.1 MR-1-Build365) WAF different ports

Jan W

Hello

I have configured a WAF Rule as following:


WAF #1 
WAN -> HTTPS Port 443 for domain xyz.xyz
Internal Web Server Port 443 

Everything works greats, i can reach my internal web-server via https://xyz.xyz

So i created a new Rule as following:

WAF #2: WAN -> HTTPS Port 8443 for domain abc.abc
internal Web Server Port 8443

When i want to open https://abc.abc:8443 i only get an error connection refused. 
But now i also get with the first url https://xyz.xyz the same error 

Disable Rule #2 the first works again.

What is wrong?



This thread was automatically locked due to age.
  • +1 in reply to LuCar Toni

    Hi, it is https:// 

    i found the problem but i don't know how this can happen.

    in /log/reverseproxy.log (can i access this only over ssh?) i found following:

    [Tue Aug 30 09:52:24.597108 2022] [ssl:emerg] [pid 4716:tid 140673883045568] AH02565: Certificate and private key abc.abc:12389:0 from /conf/certificate/abc.abc.pem and /conf/certificate/private/abc.abc.key do not match
    AH00016: Configuration Failed

    this repeats every few seconds, so i belive thats the reason why no site works.

    after reuploading the same pem & key file via web, rule 2 works....

    that is confusing thank you for your help!

Unfiltered HTML