Right now the WAF is showing as the source ip address in the log files of my servers. I'd like to see the public ip address of the clients that are accessing the servers. I've enabled "pass host header" but that doesn't seem to do it. Is this possible…

I'm using the WAF as a reverse proxy. I'm wondering if there is a way to block or whitelist access by ip address? i found this post from 9 years ago saying it'd be available in 9.3 but if it's available now i'm not seeing it: RE: Source-IP filter…

Hello. I am using UTM version 9.7. I have configured a web server inside with UTM's WAF. But when I access the site from outside, I cannot see the site properly because of garbled characters like Arabic characters. Can someone please lend me some…

Hallo zusammen, leider komme ich mit dem Sophos Support hier nicht oder nur schleppend weiter. Folgende Situatiion: Wir haben eine XGS3100 beim Kunden am Main Office in Betrieb genommen. Daran angebunden sind diverse Standorte hinter einem Site2Site…

I want to set up a WAF on the firewall, but a domain needs to be set in the WAF rules. My server does not have a corresponding domain, how should I set it? I checked the official website manual, but I don't quite understand the statement in the manual…

Hi y'all, I am struggling with the following scenario: Webserver protection works fine for several sites. Now I would like to protect an internal web service that should be available via https (yes, http S ) on port 8080 (I know...). Webserver Protection…

Hallo zusammen, ich wollte mich mal mit den WAF Möglichkeiten beschäftigen. Grad das Path-Specifig Routing ist für mich interessant. Ich habe jetzt 2 VM´s in der DMZ, jeweils mit Apache2 auf Port 80 (alles Testhalber). Ich habe jetzt wie im Screenshot…

Hi, I'm having trouble with the WAF, XGS 2300 v19.5.1 I add the webserver web .xxx.xxx - it has policy ID 129 . But if I go to web .xxx.xxx in the log it shows that web.xxx.xxx has policy ID 43 . I get a 503 error But the policy ID 43 is spsluzba.xxx…

Hello, I have a question regarding if this a bug, feature or just misconfiguration of our part: I've successfully managed to configure the RD gateway and RD web access in the Sophos XG with WAF rule. I took the RDG 2012 profile provided by the XG and…

Hi all, I use a XGS 2300 with actual path level. We migrated fresh from UTM. In UTM we redirected in WAF to have mail.server.com redirected to mail.server.com/owa (Exchange Outlook Web Access). I only find old articles describing, that this is…

For all searching for this Problem with Teams not showing the calender app using hybrid szenario. Refering to this basic guide: Sophos UTM: Create WAF to allow traffic through Exchange 2016 using the MS Connection Tool: https://testconnectivity…

Dear All Currently I setup new Lab to test Web Server Protection to have better understanding regarding on how to it works. I trying to provide web server protection for public user to access my internal web server . Below is my network topology…

Hello everyone, I have a question regarding the usage of the command 'set http_proxy add_via_header off' in the CLI. We currently have a website and multiple host services, and we are considering disabling HTTP header information disclosure by request…

Hi all Am I correct in assuming that URL redirection as it was possible in UTM can no longer be implemented with XG 19.x? We would like to forward Visitors of our Homepage (which is a webserver behind a webserver protection / WAF rule) from ourdomain…

Hello everybody, I'm currently trying to establish the WAF setup for the current confirguration: Two sites are connected via IP Tunnel and everything is properly working with the static routes set-up. Now we have the need to setup Webserver Protection…

Hi, I configured the WAF on XGS87 (SFOS 19.5.2 MR-2-Build624), created the protection\authetication policies and applied them on the Firewall Rule. However, when I point the IP address of the published application, the login prompt to enter the username…

When making any changes to a WAF rule, form based authentications will stop working and throw an error 404. When editing the affected authentication policy and saving the settings, which reloads WAF, the problem is gone. This can be reproduced on two…

Hi All, I am trying to have the following setup on my XG unit. sub1.mydomain.com -> internalwebserver1 sub2.mydomain.com -> internalwebserver2 I have created 2 WAF rules on my XG unit, both of them have the FQDN of the public website in the domains…

Hello, Im hosting for myself some things. One of it is PingVin-Share which is behind WAF on XG. I was trying to upload a file abut 10mb... But im getting an error. So i went to console -> advanced shell logs are below: [Sun May 14 20:00:11.856339…

Hello, I have the problem with an XGS 107 (19.5.2-B624) that a web server (10.203.111.101), which is located behind an IPsec connection, is not reachable via the WAF. When accessing the web server via the Internet, I get the code 503. However, the problem…

If I upload a new certificate because it's just been renewed, and then select that certificate in an existing firewall rule for web protection, it automatically deletes all the domains I've associated and puts in the ones it's found in the certificate…

I have a local web server i would like to publish it so i can access it from outside via port 443 , i've already generated an ssl certificate and i would like to use it via Sophos FW . is it possible to do it via WAF and attach the new SSL certificate…

hello i have 2 different webservers running in my internal network how should i protect them in my sophos from external attacks ? thank you

Disclaimer: The content is published as-is, without any expectation of official support or guarantees. Please contact Sophos Professional Services if you require assistance with your specific environment. Overview This article contains steps to create…

Dear All I currently setup new lab to test Web Server Protection at XGS firewall. My setup: 1. Web Server using Xampp (LAN Zone) - IP: 192.168.100.2 2. Virtual Firewall XGS. (LAN Interface IP: 192.168.100.254) ( WAN Interface IP: 192.168.43…