Hello Community.
Is there any information that Sophos XG appliance is inspecting traffic between Sophos ----> Server ?
Simple scenerio:
[WAN INTERNET] --------> (SophosXG_WAF Rule) -------> "Synology Server with a few services on non standard ports…
Hello friends.
I only have one public IP on my Sophos XGS, but I want to publish three web applications (web1.dominio.com, web2.dominio.com, web3.dominio.com), all arriving on the same public IP and on the https port.
I know that via NAT, this would…
Hi there, We have a support portal protected with the WAF (v18.5.1), however, we get this error message.
"Inbound Anomaly Score Exceeded (Total Score: 5)"
However, we do not find any ID in "reverseproxy.log" to make an exclusion. What can be done…
Hello,
I've done some searching on here and many posts I find are 5-10 years old and/or the original poster never came back to confirm whatever was suggested fixed their issue or not. And, for reasons beyond me, these threads are locked so you cannot…
Set up: Client <---> Sophos HTTPS WAF (Ports 80 & 443) <---> HTTP Wordpress Server (Port 80)
The reverse proxy seems to keep redirecting me to HTTPS on port 443 despite the request being for HTTPS on port 443.
~$ wget http://blog.mysite.com/ -O /dev…
I have a website behind a webserver protection a virtual XG 18.5.1-326
One page on the website creates an error that leads to a blocking of the next page.
The only way to unblock it is by creating an exception for the relevant path for the "Protocol…
Hi,
I'm using a virtual appliance of Sophos XG 18.5.1 (2c4g)
I configured 60 WAF policies, but now I'm blocked by a limitation.
Error message: 60 WAF policies are already enables. This policy will be created but it will not be enabled. Are you sure…
I have gone through the steps to set up WAF according to the documentation, but I cant seem to get the WAF IPS to work with HTTPS requests. It works perfectly fine with HTTP requests.
Here is my configuration
The certificate is valid for both…
Hi
One of our customers has been advised to disable HTTP trace/track as it is identified in a vulnerability scan.
They have asked the question "what is the impact on the firewall operations?" if the change is made.
This is not something I have come…
Hi,
i used to have pubished TFS 2015 with different XG Releases (17.0,17.5,18.0 and 18.5). Users connected to the Webinterface of TFS through a Public URL and XG had a simple rule with Form bases authenticationa against the TFS 2015.
Last week i changed…
Hi, I did manage to config WAF for Synology Sync drive. But i dont have any protection. While im uploading testing file "Eicar" it gets passthru...
Why i dont have AV, logs and other options turned on.
Thx.
#xg #synology #WAF #"web protection…
Hallo zusammen,
ich habe eine Frage, bezüglich der Veröffentlichung von Exchange Diensten über die Sophos XG Firewall. Bisher ist es so konfiguriert, dass ein DNAT Regel auf den SBS Server zeigt, welcher die Dienste veröffentlicht.
Dies funktioniert…
Hallo Zusammen,
ich habe eine UTM Version 9.506 am laufen und möchte einen Webserver in der DMZ bereitstellen über WAF. In diesem Falls ist das Baramundi Gateway welches von außen über Port 443 von den mobilen Gerätenangesprochen wird.
Zur Info: …
Hallo zusammen,
ich betreibe auf meinem NAS zuhause meine eigene Cloud die jeder vom www aus erreichen kann. Um diese zu Protecten läuft vor meinem NAS meine SOPHOS UTM Home auf der die WAF aktiv ist.
Im Firewall Profil der WAF ist der Virenscan…