Thread Info
Options
Suggested

Issue with WAF rules with 2 web servers - XG v21.0.0 GA-Build169

Tibor Soós

Hi all,

I am facing an issue with WAF rules.

I have two hosted Web servers on port 443.

server1.domain.com

server2.domain com

I made 2 protection rules with correct certifications for them and also firewall rules, but only one works when I am trying to access them from the public IP.

That is accessible which is highest (first) on the NAT rules list,

I saw that somebody had the same issue on the V19 but the upgrade helped there.

Do you have any idea what to check?



Added TAGs
[edited by: Erick Jan at 2:01 AM (GMT -7) on 17 Mar 2025]
  • 0

    Hi,

    i think you have created NAT rules with FQDN-hosts ...?

    These FQDN hosts are resolved to IP addresses. They cannot be used to distinguish different FQDN names on the same IP.
    WAF / web server protection would have to be used for this.

    PS: as long as a WAF-rule is active, you do not need a DNAT rule


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

    • 0 in reply to dirkkotte

      HI,

      thank you for your answer. It still not works for both WAF servers even I deleted all the NAT rules and using just the WAF ones. Only one web server is accessible from outside, and the second FQDN is bringing this in the browser:

      Not Found

      The requested URL was not found on this server.

      Do you have any other idea what to check?

      Thanks.

      • 0 in reply to Tibor Soós

        Double check your WAF-rules.

        Mit freundlichem Gruß, best regards from Germany,

        Philipp Rusch

        New Vision GmbH, Germany
        Sophos Silver-Partner

        If a post solves your question please use the 'Verify Answer' button.

        • 0 in reply to Tibor Soós

          In addition to Philipps suggestion, also check logviewer / WAF.
          Looks like the message "The requested URL was not found on this server" komes from server.


          Dirk

          Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
          Sophos Solution Partner since 2003
          If a post solves your question, click the 'Verify Answer' link at this post.

      Unfiltered HTML