I have a client which we need to connect via SFTP on port 22 (via Filezilla) to his server which he has given us the IP address (as the host).
He has also accepted on his server our Public IP to be able to connect to his server via SFTP.
I have added a firewall rule on Sophos for my network to be able to be able to SFTP to this , as well as any VPN users to SFTP out but still it cannot connect.
Am I opening the port correctly for SFTP (see screenshots below)
Hello lazo8592 ,Thank you for reaching out to the community, the screenshots are missing, can you please share it ?
Thanks & Regards,_______________________________________________________________
Vivek Jagad | Technical Account Manager 3 | Cyber Security Evolved
Sophos Community | Product Documentation | Sophos Techvids | SMSIf a post solves your question please use the 'Verify Answer' button.
See links below
https://imgur.com/a/PJsCsHK
https://imgur.com/a/k1Qw8Ee
That client IP is located on the WAN right ?Can you please create a Linked NAT and enabled the MASQ on it and save it !Please update us once done lazo8592
Can't see your screenshots from links provided (blocked). Would be good you upload the images here.
What do you see within log-viewer? Use the free-text-filter with destination-IP.
Dirk
Systema Gesellschaft für angewandte Datentechnik mbH // Sophos Platinum PartnerSophos Solution Partner since 2003 If a post solves your question, click the 'Verify Answer' link at this post.
Hi I have tried to upload images but they are not being uploaded and is asking for a URL. It's probably being blocked by your browser.
I have looked at the log viewer but port 22 is being denied even though I opened the port as sftp.
hI Vivek
Yes the client is located on the WAN side and I have now created a linked NAT with MASQ enabled but still it doesn't connect. The log viewer shows port 22 is being denied even though I opened the port as sftp.
In my main rule for internet I have also added the service SFTP as well to it.
Is there something else I have to add to get this working?
Can you perform a packet capture to see if it is not causing any sort of a violation ?https://support.sophos.com/support/s/article/KB-000035761?language=en_US lazo8592
I managed to open the log viewer with the source IP I am doing the test from and firewall allows everything but cannot connect. See link below
Firewall allows port 22
How do I do a capture within the log viewer?
Hey lazo8592 ,https://support.sophos.com/support/s/article/KB-000037007?language=en_USCan you capture a tcpdump ?
Vivek,
You lost me at device management ->advanced shell
Isn't there an easier way to do this? It shows in the log viewer firewall is allowing port 22 traffic to the client IP.
Perhaps the client is blocking our public IP from their side?