Good morning, I currently have a server in an on-premise datacenter that responds to TCP port 12233. So there is a very normal DNAT on the XGS firewall of the public ip 80.80.80.80:12233 towards the private server ip 192.168.1.10:12233 This service is…
hello ,
i'll try a simple port forwarding
when i setup this like below , it works
when i change the source port to 7887 then it dont forward.
why o why ?
I believe I have everything right but I cannot see traffic in the firewall logs and I cannot get remote access to ether media server. NAT Rule : Port 2 is WAN, Port 1 is LAN, Synology is a local IP
Any Suggestions? I already called my ISP and they…
Hello,
I am using XGS2300 Version 20
When users are on LAN, they cannot access servers on the same network while using their public IP, they can only access the server over the public IP when they move out of the network. How do I solve that
Port forwarding rule
I have an external ip address (PortB:8) currently used for a production website on port 443.
I would like to be able to access a test web server via the same public IP via port 65443 and translate to port 443 at the server.…
Hi all,
# XG330
I have a project to set up an SFTP server to transfer data securely from a remote station to the SFTP server located in the DMZ.(Head Ofice) the server is installed, configured and integrated into the dmz. the remote client uses an…
hi all,
so on our sophos FW i have set up two SD Wans as we have 2 Wans, one for our main network (wan1) and another for our guest network (wan2) as we wanted them separated so there using different public ip addresses
problem is i have a laptop going…
Hello All,
Yesterday my Firewall start trigger IPS alerts, 8 in totals. I see a specific WAN IP address in the rapport i want to completely block. I have read couple older disscution but nothing fully help me. I have already do this firewall rule: …
Dear Sophos Support Team
XG135 sophos firewall port forwarding not working properly on our customer ..he has remote access on IPPBX branch..how can i solve this issue
I have an IKEV2 vpn server with internal IP 10.83.185.200. I am attempting to portforward traffic from my WAN port to to LAN port. For some reason, I am able to access the vpn server from the LAN side using my public IP. However, when I attempt to access…
Hi team,
I wanted to bring to your attention some issues we've encountered following a recent firmware update on our XGS2300 device.
After the update, we are experiencing difficulties with the VPN connection—it is not working as expected. Additionally…
Hello Please be informed that i have an ERP which is accessible locally "LAN" but when i tried to access from outside im not able to, however i set up a DNAT rule please find below the screenshot it is in french language
i set up port forwarder on the…
I've created a firewall rule & NAT rule to forward port 5555 to my local server ssh server and it was working perfectly -for sometime- but it keeps failing now and i can't access, after scanning port it keeps saying that it's closed?
I recreated the…
Simple test using PING
Create a server on local LAN using SAA and ping to it from an outside network. (Default rules wont reply).
Steps taken Add an alias to WAN with a 2nd public facing IP. - Mine (Port2:0)
Ran the Server access assistant.
…
Sophos Firewall is NOT very intuitive so far. Nothing inbound works...but the default rules to let everything outbound does. So figured id ask the community.
I've reverted to the simplest test I can think of....Port forward ICMP from WAN to a LAN workstation…
I understand I need to create a blackhole DNAT to block inbound IPSec traffic. What I also need to do is allow a few endpoints to establish a tunnel. To me, this means I need two NAT rules -- one to passthru legit IPSec and the other to blackhole.
I…
Hello guys,
Im struggling on this case:
I want to open port ( 37777/tcp ) to get acess CCTV from exterior like a phone, tablet or computer. This acess is from Public IP ( WAN ) so i create the service ( print1 )
After that i create firewall…
Hi
I finally setup my sophos XG 106
I have a WAN/LAN/DMZ and WiFi Zone.
WAN use PPPoe Passthrough
In the DMZ zone I'm currently running an docker host with some container.
I created a DNAT rule to access one of the container running on Port…
Good Day,
Could anyone assist me?
I have created a VLAN for CCTV to sperate from the company network. Want to allow the CCTV to be connecting from the WAN Port from our ISP to use the Public IP so that we can monitor the CCTV remotely without VPN…
Hi
I have a XG and im trying to get 3CX working correctly. I have nat and firewall rules set but when i run a test from 3cx I'm getting the full cone error i cant see what I'm missing
XGS136/ SFOS 19.5.2 MR-2-Build624
DNAT rule for on-prem mail server does NOT have email scanning turned on. Microsoft 365 Exchange Online Protection (EOP) is the spam filter.
When I send an email to a distribution list of about 35 members from an…