DMZ Configuration

Question

Hello Team. I recently deployed a sophos xgs 3300 firewall. I am very green in regards to the firewall but I have managed to set it up and get the LAN and remote sites to access the network services. The challenge I am facing is making my public servers available through the firewall DMZ. I have a list of public IPs from my ISP that I have configured in the servers. Then I have registered domain names for the servers pointing to the public ips. 
 my set up is as follows 
 - Port 2 - WAN 
 - Port 3 - DMZ ip 192.168.x.1/24 
 Firewall Rule: 
 - Source Zone: WAN 
 - Source networks and devices: Any 
 - Destination zones: DMZ 
 - Destination networks: Server IP 192.168.X.2/24 
 - Services: HTTPS 
 
 NAT Rules 
 - Original source: Any 
 - Original destination: Port 2 
 - Original Service: HTTPS 
 - Translated source (SNAT): Original 
 - Translated destination (DNAT): Public IP of the server 
 - Inbound interface: Port 2 
 - Outbound Interface: Any 
 
 The server settings: ip 192.168.x.2 / 24. Gateway 192.168.x.1

Raphael Alganes · Answer

Hello Geoffrey, 
 Kindly see if this guide helps with your setup: https://docs.sophos.com/nsg/sophos-firewall/21.0/help/en-us/webhelp/onlinehelp/AdministratorHelp/RulesAndPolicies/NATRules/RulesPoliciesCreateDNATAndFirewallRulesForInternalServers/index.html#dnat-network-diagram 
 Kindly verify as well that your DNS record/s point out correctly to your public IPs and ISP isn't blocking any needed ports in-between. 
 You may also check logs if traffic reaches the WAN interface of your Sophos Firewall. 
 Hope this helps 
 Regards,