I need to setup port forwarding to send traffic going to my wan interface on port 444 to an internal server on prt 443, i hav etried every ttorial i can fid on the internet and nothing seems to work.
can anyone suggest a tutorial that works and is relivent with the the most recent version of XG.
What is your firmware version on your XG?
Mit freundlichem Gruß, best regards from Germany,
Philipp Rusch
New Vision GmbH, GermanySophos Silver-Partner
If a post solves your question please use the 'Verify Answer' button.
This is the online guide on how to set up DNAT rules in version 19.5. So you wanted the latest version, so I assume you have version 19
https://docs.sophos.com/nsg/sophos-firewall/19.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/RulesAndPolicies/NATRules/RulesPoliciesCreateDNATAndFirewallRulesForInternalServers/index.html
There is also the "server access assistant" for creating DNAT rules. docs.sophos.com/.../index.html
SFOS 19.5.1 MR-1-Build278
No replies yet?? Do you need to change the service to HTTPS, which would be port 443? It should be as simple as
creating a DNAT rule to change the destination to your internal server and change the service to HTTPS (port 443). I think it's referred to as Translated service (PAT)
Naturally, check the logs to see if it's being blocked and check the firewall rules on the server to make sure the incoming connections are not being blocked by it's firewall.
I had set that up already, however when i went to see if i had it the right way round i noticed the source port was set to 44 and not 1:65535 switching that fixed it.
I'm just a little confused. Wouldn't using 1:65535 as the source port essentially forward everything to your webserver? If you only want connections to a particular port of your firewall to be forwarded to your server, why DNAT every port?