This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG Firewall randomly blocking WAN to LAN access

Our XGs mainly sit within the same network but at different branch offices connected via a IPVPN converged services network provided from out ISP. So the WAN port has a private IP address, and to use NTLM and other services, the WAN zone was disabled and a IPVPN zone used in its place.

The problem I am having is that even with a IPVPN zone to LAN zone allowed rule created, the XG will stop allowing traffic from the WAN port inside the FW. I have to keep a constant ping going from a server outside the network to either the FW or a server inside the network to keep the device open.

An example is that I would be unable to RDP into a server on the LAN side of the XG from my laptop on the IPVPN WAN side of the XG.

Thank You for your help.

This thread was automatically locked due to age.

0 sachingurung over 8 years ago

Hi,

Greetings.

Once you initiate a ping going from a Server outside the network to either the Firewall or a Server inside the network, I request you to take a Packet Capture in XG to monitor the Packet flow.

Please refer the link, to learn about Packet Capture in XG.

https://community.sophos.com/kb/en-us/12318

This will provide you the Status and Reason about how the packets are communicating. This will help, you can make the necessary changes accordingly.

Let me know, if you have any further questions.

Sachin Gurung
Team Lead | Sophos Technical Support
Knowledge Base | @SophosSupport | Video tutorials
Remember to like a post. If a post (on a question thread) solves your question use the 'This helped me' link.
Cancel
Vote Up 0 Vote Down

Cancel