hi all,
we have a xgs 4300 v20
i want to give a new ip/host the same rule sets as an existing ip/host
how can i do this please?
thanks,
rob
Added V20 TAG
[edited by: Erick Jan at 3:41 AM (GMT -7) on 30 May 2024]
Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.
hi all,
we have a xgs 4300 v20
i want to give a new ip/host the same rule sets as an existing ip/host
how can i do this please?
thanks,
rob
Hi,
couple of options, really depends on how many rules you have?
1/. clone the rules
2/. export as an xml file and add the new device rules.
Ian
XG115W - v20.0.1 MR-1 - Home
XG on VM 8 - v20 GA
If a post solves your question please use the 'Verify Answer' button.
But how do I see all the rules the original IP/host has or is on?
Hey Sophos User1175 ,
Thank you for reaching out to the community, Under the Rules and polices > Firewall rules > on the right side Click More options to specify the following rule actions:
Once the rule is cloned above or below based on your requirernemnt, you can edit the that clone rule according to your requirernemnt where either you can add or delete or edit the existing hosts/IP...etc
Another way you can refer - Import export & XML Import for Internetv4 Objects.
Thanks & Regards,
_______________________________________________________________
Vivek Jagad | Team Lead, Global Support & Services
Log a Support Case | Sophos Service Guide
Best Practices – Support Case
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Hi,
one method of identify the rules is in logviewer refine the view to the ip address of the device, I realise there will be many entries to review.
ian
XG115W - v20.0.1 MR-1 - Home
XG on VM 8 - v20 GA
If a post solves your question please use the 'Verify Answer' button.
This isn't what I want, I want to see a list of rules what the original host/ip has got and add new IP/host to the rules
Is this the best approach surely there should be a filter on the firewall rules to enter in an IP and it will list all the rules that IP is a member of?
So you mean filter out the host/IP used in the number of firewall rules used ?
Thanks & Regards,
_______________________________________________________________
Vivek Jagad | Team Lead, Global Support & Services
Log a Support Case | Sophos Service Guide
Best Practices – Support Case
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Basically see what rules that ip is a member of
Hey Sophos User1175 , have you tried using the following filter?
Thanks & Regards,
_______________________________________________________________
Vivek Jagad | Team Lead, Global Support & Services
Log a Support Case | Sophos Service Guide
Best Practices – Support Case
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Hey Sophos User1175 , have you tried using the following filter?
Thanks & Regards,
_______________________________________________________________
Vivek Jagad | Team Lead, Global Support & Services
Log a Support Case | Sophos Service Guide
Best Practices – Support Case
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Hi Vivek,
is there a KBA on the use of this search function. I have tried to use it and not returned any meaningful results. The source networks only allows selection of external networks/FQDNs, unless the device you are searching for is in the FQDN list you cannot use IP addressing.
Ian
XG115W - v20.0.1 MR-1 - Home
XG on VM 8 - v20 GA
If a post solves your question please use the 'Verify Answer' button.
Nope, but this is introduced in v19.0 GA to enhance user experience, Object search: You can search for a network object or service for inclusion in rules and policies. It includes a free-text search option that allows you to search by label or value, enhancing the user experience.
Thanks & Regards,
_______________________________________________________________
Vivek Jagad | Team Lead, Global Support & Services
Log a Support Case | Sophos Service Guide
Best Practices – Support Case
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Hi Vivek
I cannot add an IP address.
Ian
XG115W - v20.0.1 MR-1 - Home
XG on VM 8 - v20 GA
If a post solves your question please use the 'Verify Answer' button.
Hey rfcat_vk You can add the IP under the IP host first
Then you can add it to search filter:
Thanks & Regards,
_______________________________________________________________
Vivek Jagad | Team Lead, Global Support & Services
Log a Support Case | Sophos Service Guide
Best Practices – Support Case
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.