Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

1-to-1 NAT with a custom zone and device directly attached to Sophos appliance

All,  here is my setup and what I am trying to accomplish.

I have a server plugged directly into port 5 on my Sophos.  the Sophos port address is 192.168.220.1.  the server address is 192.168.220.2 

I have created a zone for this server and placed the physical port in the zone

I have created a business policy, non-http:

Source Host: any

Hosted Server: Source Zone: WAN  Hosted Address: (the public IP assigned to the server)

Protected Application Servers: Protected Zone: (the custom zone I created) Protected Application Server(s): private IP address of the server

forward all ports: on

Masquarade: off

intrusion prevention: off

traffic shaping: off

log firewall: on

reflexive rule: off

using this config, I cannot ping the server from the outside using its public IP address.  what am I missing here? 



This thread was automatically locked due to age.