Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to Deny Direct IP access from browser ?

Hi,

I need advice how to Deny Direct IP access from browser. So, it only allow access by domain-name.

How it done through Sophos Firewall configuration rule?

I use Sophos XG 310, SFOS v20.0

Thanks



This thread was automatically locked due to age.
Parents Reply Children
  • Hi,

    you can’t, how else would the network locate your firewall?
    ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • Hi,

    I tried once using virtual host configuration in our server. Actually It's worked.

    But unfortunately, domain-name access became failed due to DNS (we use Cloudflare) unable to read SSL certificate in our server.

    Therefore, I'm looking different way to do that from Firewall side.

  • If you're looking to protect an internal webserver from being accessed by IP-address then you can use the Web Application Firewall. You can find it under Protect -> Webserver. This will allow you to determine which URLs are being passed to which internal servers.


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

  • Hi,

    I have existing WAF Rules as below.

    Any advice how to set up as what I need ?