Reflexion will be End-of-life on March 31,2023. See Sophos Reflexion EoL FAQs to learn more.

ACL Violation when attempting WAN to LAN NAT v19.5.0


I have searched and can see others have this issue, however none of the solutions have worked for me so far.

I have followed the steps at to create the following policies, with the intention of allowing WAN -> LAN traffic the specified ports:

NAT Rule:

Sophos Public Address is an IP

Valheim Server is an IP

Firewall Rule:

The service 'Valheim' is defined as:

The packet captures I have been getting are as follows:

(apologies for drop-packet as an image and not plain text)

Any help would be greatly appreciated

Edited TAGs
[edited by: emmosophos at 6:18 PM (GMT -8) on 6 Feb 2023]
Parents Reply
  • Hi - thanks for your response!

    I have made the following adjustments:
    Service is now TCP&UDP 1:65500 / 2456:2458

    I'm not sure I understood your directions on the firewall rule correctly, but I have done the following:
    Destination Zone is now WAN, and Destination Network is Sophos Public Address.

    I have run some further packet captures and am still seeing the Violation / Local_ACL result.