I have WAF on two web servers. One Exchange and one private cloud site. When I turn on any Common threat filter, it cannot be upload attachments larger than 1 MB.

Hi, Running an XG310. I have a web server running behind this device and also have a WAF rule for protection. I want to specify which URL's are accessable to the outside world. For example, if I was running www..123.com behind WAF. www.123.com/everyone…

Hello Community. Im hosting some assets on Synology box. one of it is Synology Drive. Its accessible from WAN - mainly it works as "One Drive". I have been create a discussion asking for help https://community.sophos.com/sophos-xg-firewall/f/discussions…

Hello Community. Is there any information that Sophos XG appliance is inspecting traffic between Sophos ----> Server ? Simple scenerio: [WAN INTERNET] --------> (SophosXG_WAF Rule) -------> "Synology Server with a few services on non standard ports…

Hello friends. I only have one public IP on my Sophos XGS, but I want to publish three web applications (web1.dominio.com, web2.dominio.com, web3.dominio.com), all arriving on the same public IP and on the https port. I know that via NAT, this would…

Hi there, We have a support portal protected with the WAF (v18.5.1), however, we get this error message. "Inbound Anomaly Score Exceeded (Total Score: 5)" However, we do not find any ID in "reverseproxy.log" to make an exclusion. What can be done…

Hello, I've done some searching on here and many posts I find are 5-10 years old and/or the original poster never came back to confirm whatever was suggested fixed their issue or not. And, for reasons beyond me, these threads are locked so you cannot…

Hi, I created a WAF rule, to allow only specific IPs, but they are blocked in WAF level displaying 403 error on the client (Forbidden, You don't have permission to access this resource), instead in firewall level (drop/reject) as it used to be the…

I have a website behind a webserver protection a virtual XG 18.5.1-326 One page on the website creates an error that leads to a blocking of the next page. The only way to unblock it is by creating an exception for the relevant path for the "Protocol…

Set up: Client <---> Sophos HTTPS WAF (Ports 80 & 443) <---> HTTP Wordpress Server (Port 80) The reverse proxy seems to keep redirecting me to HTTPS on port 443 despite the request being for HTTPS on port 443. ~$ wget http://blog.mysite.com/ -O /dev…

Hi, I'm using a virtual appliance of Sophos XG 18.5.1 (2c4g) I configured 60 WAF policies, but now I'm blocked by a limitation. Error message: 60 WAF policies are already enables. This policy will be created but it will not be enabled. Are you sure…

I have gone through the steps to set up WAF according to the documentation, but I cant seem to get the WAF IPS to work with HTTPS requests. It works perfectly fine with HTTP requests. Here is my configuration The certificate is valid for both…

I have gone through the steps in the documentation for configuring WAF and the rule's traffic count increases accordingly when the web server is accessed. However, I can't seem to be able to verify that it is actually being protected. Almost all protection…

Hi, i used to have pubished TFS 2015 with different XG Releases (17.0,17.5,18.0 and 18.5). Users connected to the Webinterface of TFS through a Public URL and XG had a simple rule with Form bases authenticationa against the TFS 2015. Last week i changed…

Hi Sophos/Forumites Had a couple of customers ask me if we could block the following at the firewall. Will Sophos be rolling out updates to take care of this or will we have to manually try and tackle this ? Some of the URLs here I don't think will…

Hi One of our customers has been advised to disable HTTP trace/track as it is identified in a vulnerability scan. They have asked the question "what is the impact on the firewall operations?" if the change is made. This is not something I have come…

Dear Sophos support team, there have been several requests about this topic, but digging through them didn't provide a proper solution. In the past Sophos provided a guideline for the UTM how to publish an Exchange server with WAF. I did not find an equivalent…

Is there a service in Sophos XG that automatically blocks the ip of the client that is trying to brute force access a web server? That is, if there is, what can be an effective way to prevent brute force attacks on, for example, an apache server that…

Hi together, i using the Sophos XG Firewall on Azure and where i can allow the Header "X-Forwarded-Proto $scheme"? I created a Web Server Policy with "Pass Host Header", but the error still there. Thanks for your support in advance. Best…

Hi All, I am clearly missing something here, but Google is not my friend on this one as I cannot find out what. I am trying to install an SSL cert to use in WAF and Mail. I created the CSR Downloaded the request Requested the SSL from GoDaddy…

Hello! I have multiple internet connections to my sophos xg home box. Can i have redundant webserver protection? Im just allowed to select only one "Hosted address", maybe if i duplicate a WAF rule and select the other interface where i want to fallback…

Hello Community, is it on the roadmap to implement TLS 1.3 for Webserver Protection? Thanks, Ben

I have a LetsEncrypt certificate with the following parameters (sorry for the substitutions, but there's customer names in the domain/hostnames): CN = {HOSTNAME1}.{DOMAINNAME1}.de DNS-Name= * . {HOSTNAME1} . {DOMAINNAME1} .de DNS-Name= {HOSTNAME2…

HI there, in relation to these WAF country blocking threads: community.sophos.com/.../enable-country-blocking-for-waf-rule https://community.sophos.com/sophos-xg-firewall/f/discussions/126590/ip-country-block-does-not-work-with-waf Is this…

Dear Everyone, I have a problem with WAF Rule , Do WAF Rule working with or without DNAT Rule . and when Disable DNAT Rule the access to published URL is very slowly and the page load incorrect . Can anyone help me ? Thanks in advance