Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Discover mode - How does it work ?

Hi there !

I'm new to XG Firewall, so here what I want to do, and what didn't seems to work (mis conf ?)

- I have a XG125W, and I need to use it in Discover Mode (to show my users and clients what their security looks like, or not :))
- I activated Discover Mode - TAP and put port4 in this mode. In Network screen everything looks fine

Here is my conf :
- Port1 - LAN port for administration (172.16.16.16 - default)
- Port4 - TAP > The port and the switch is configure to mirroring
- Port5 - WAN port for updates and connections to my LAN to use Mail servers and AD authentications
  . WAN port5 - 192.168.1.10
  . My LAN - 192.168.1.0/24 - With Gateway 192.168.1.254

I have a Full Guard licence for 1 year (Sophos Partnership)

Today, what works :
- Updates of the XG works fine
- Email sending of reports works fine
- Discover "seems" to works fine : I only "discover" Intrusions Attack (which are DropBox and others LAN services in fact)

Today, what didn't work :
- I have no information on the Website by users
- I don't see any risk apps
- I have no view of what my users are doing on my LAN

Did I miss something ?

If anyone tried and successfully have it working so way it was described I'm interested !
 



This thread was automatically locked due to age.
Parents
  • How are your users idetified in the XG? You either need to enable the client function (each user signs into the XG for external access whether directly or by AD association) or setup the clientless function if you want reporting to work. Don't forget to activate the clientless users or they will not access to theinternet, I assume the same applies for the client groups.

    I only have experience with the clientless group.

    Ian,

    home UTM 9.x running in ESXi 6 e3-1275v2

    AP55c and AP10 (courtesy Astaro)

    Three other UTMs, SUM and SFM in hibernation

    XG 15.x MR3 in hibernation

  • I think you didn't understand my problem : I want to use the Discover mode, so the XG is in parallel of my network, just as a sniffing device.
    I didn't need my users to authenticated themselves.
    Thanks anyway :)
Reply Children
No Data