• Sophos FW rule from version 17.5 question

    Chi Hing Chi Hing
    Chi Hing Chi Hing
    Dear All, Would like to seek for your help, i have the following firewall rule from Sophos 17.5, i would like to create the same rule in Sophos version 19.5, how do i create it under firewall rule + NAT rules for the following ? any help would be…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • How to change default SNMP port?

    Esrom Lima
    Esrom Lima
    By default, the agent's port is 161 and the manager's port is 162, but many internet operators here in Brazil leave this port blocked, which makes it impossible to access the firewall's SNMP. How to change this default port?
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • dnat rule Public ip restriction

    Stefano Sorrentino
    Stefano Sorrentino
    Hi Guys, i have a DNAT rule active for our Phone System, but i´d like to make some restriction for some public ip in order to block the traffic before the dnat rule applies. The "exclusion" section in the DNAT rule doesn´t work, someone can give…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Unable to access a service using SAP router outside the network

    Anesu Dangarembwa
    Anesu Dangarembwa
    Good day Team Using Sophos XG 310 V19 Users are not able to access a service using the SAP business, outside the local area network, using the SAP router. We use code nwbc. We have created a DNAT for the server. we getting the error below
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos XG230 - Firewall NAT rules - Same Destination port - Different Destination IP - Different Source IP

    Craig Pattison
    Craig Pattison
    Hi, I work for an MSP and we host client backup data in our data center. I am evaluating switching our Draytek 3900 firewall for a Sophos XGS device. Before we commit to a purchase I am using an XG230 as a test platform to see if it will do what we…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • ACL Violation when attempting WAN to LAN NAT v19.5.0

    Hugh Beavis
    Hugh Beavis
    Hello I have searched and can see others have this issue, however none of the solutions have worked for me so far. I have followed the steps at https://docs.sophos.com/nsg/sophos-firewall/19.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/RulesAndPolicies…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • LAN user cant access internal web server through public IP

    Shakir HUsain
    Shakir HUsain
    Public user are accessing local URL (http://117.x.x.x:3000) successfully, but internal LAN user (192.168.16.10) want to access by public IP , but cant access URL : http ://117.x.x.x:3000, what is the solution,
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Problem using email client from command line

    Gaetano Nicosia
    Gaetano Nicosia
    Hello, This is the "scenario". I have a Vmware network on which a number of servers (Domain controllers, administrative management servers etc.) are virtualized. Connected to this network are physical devices such as clients, printers etc. The…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Interne IP auf SSL VPN Benutzer umleiten

    Maik Lehr
    Maik Lehr
    Hallo zusammen, ich stehe derzeit vor einem Problem was für mich noch nicht ganz schlüssig ist. Wir haben eine Sophos UTM 9 bei uns im Einsatz. Nun zu meiner Situation: Wir mussten unseren Datenbank Server aufgrund von Ressourcen Mangel auf einen…
    • Answered
    • over 1 year ago
    • UTM Firewall
    • German Forum
  • UDP port 1194 closed (started after update to 19.5)

    John245
    John245
    After updating to v19.5 the back-up to the remote location stopped as this was relying on udp port 1194. Internet: Experiabox (DMZ) --> XGS 126 The settings are given below. Any idea how to solve? --- John
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Help! NAT that works on UTM9 not working on SF/XG.

    DS7109
    DS7109
    Hi, hoping someone can help. Apologies for the long post. *** This looks like a repost from another user but for some reason when I logged in to the community recently it set up a new account for me. I am the OP of this thread** ALSO, Although in…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • RED NAT PUBLIC IP PORT CASE ID : 05887593

    support support18
    support support18
    Hi I have a firewall who is behind an ISP router The wan port is connected directly to my ISP router via PORT 2 and i've assigned to it a private IP@ Now when deploying RED devices , the support asked me to give the Port 2 a public IP@ , wish i don…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Allow LetsEncrypt without DNAT

    Carlo
    Carlo
    Hello, is there any way to allow LE without manual enabling firewall and nat rules? I have couple of web servers on same port 443 and I would like to enable them to use LE for generating new and renewing certificates but I'm unable to find the way.…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG port forwarding

    feroz syed
    feroz syed
    Hello, i was trying to open the PORTS to all Internal users, but the rule still blocking the access. please verify that am doing port forws correct way for all internal users. Thanks
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Need help with PAT

    I T2
    I T2
    Hi, I am trying to create rule on firewall so camera monitoring company can check our cameras from outside. I need help to setup this firewall rule. Thanks
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Problem with Sophos together with my own spam filter

    Conny Ljungqvist
    Conny Ljungqvist
    Hi. I'm running SFOS 19.0.1 and are currently migrating my mail. We have our own antispam (Xeams) placed in our DMZ and have no subscription for Sophos antispam solution. I really need some guidance on howto make Sophos work with an existing antispam…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Open port to access local server web application

    Omar Al Sous
    Omar Al Sous
    Hi all, I need some help. recently I installed a new server with a web application to be accessed by LAN users. I must open the application port (8070)in the local network to be accessed by users using web browser. thanks
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Invalid port in mapped ports list/range

    gerd Buchhardt
    gerd Buchhardt
    Hello, I 'm using a Sophos XG firewall. When I generate a Buissness Firewall Roule and want to save it I get the popup: "Invalid port in mapped ports list/range" This also happens when I try to clone a existing Buissnes Roule . Can anyone tell…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Help! Migrating tricky NAT rules from UTM to XG 19

    DCALS
    DCALS
    Hi, hoping someone can help. Apologies for the long post. I'm currently building a Sophos XG appliance to replace my UTM9 as I've exceeded the 50 IP limitation on the home license. Rules and filters etc are slowly but surely being recreated in XG but…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • DNAT Sinkhole / Blackhole doesn't work for SMTP Relay

    Luca Steinke
    Luca Steinke
    I have a Sophos UTM with v9.712-13. I understand from Rule #2 in " rulz " that DNAT is evaluated before the firewall rules: the connection tracker (conntrack) first then Country Blocking then the 'ICMP' tab in 'Firewall': Traceroute and Ping…
    • over 2 years ago
    • UTM Firewall
    • Network Protection: Firewall, NAT, QoS, & IPS
  • XG DNAT Load Balancing Exchange Services

    Timothy O'Brien
    Timothy O'Brien
    Hi, We are moving from SG UTM to XG Firewall. In our previous setup on our UTM, our exchange environment (among other things) uses an Alias IP of an internal vlan as a virtual server address for load balancing. The UTM handles all traffic to the "Load…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Two web servers on one ip public - question about DNAT

    Marco Alunni Pini1
    Marco Alunni Pini1
    I've got 2 web servers on different local IP. Both IIS. (x.x.x.7 and x.x.x.21) I've done 2 waf rules on firewall but i've got a DNAT on HTTP direct connect to 1 server (x.x.x.7) It is necessary have DNAT rules (loopback and reflexive also)? Infact…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • How to specify UDP port in DNAT rule

    John245
    John245
    New to Sophos. Was able to set up DNAT on my XGS 126. The rule above is working, but how do I limit the UDP to a specific port#? When I try to edit UDP I'm not able to save that value. --- John
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Making 1 LAN adress available to the WAN network

    Georgios Maramis1
    Georgios Maramis1
    Hello, I recently installed a sophos home firewall and iam a bit inexperienced so sorry if this a stupid question! :D I have a plexserver running in my LAN network but my firetv sticks all are in the wireless network from my router (also the WAN network…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • SSL VPN fails when DNAT rule applied

    Mayuresh Bhagwat
    Mayuresh Bhagwat
    We are facing a strange issue. We have a Sophos Firewall XGS2300 running on SFOS 19.0 with a single ISP link. Most of our users connect over SSL remote access VPN. We have a internal server that is accessed from the WAN side over ports 7070 and 1470…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
<>