Hi,
I have HTTPS-Certificates from LetsEncrypt.com for all my subdomains. I uploaded the Certificate in the XG und used them in many Firewall-WebServer-Protection-Rules.
This Certificates expire after 90 days and I have a Script do renew them easily…
I'm having trouble setting an IP range for an internal DNAT rule to redirect NTP (UDP/123) traffic destined for the WAN to an internal server in LAN. A single IP entry works but I want the rule to catch <ANY> destination IP heading to the WAN interface…
Hi All,
I created a business application rule to allow SMTP access to my exchange server using the email servers (SMTP) template. Below are my settings:
Now, on my LAN network i can get a connection on port 25 to the SMTP server by using the external…
Hi, I'm new in XG but I've installed Hundreds of Astaro (since V6) and Sophos UTM.
In this days I've started to work with XG and this is my question, is this normal?
as you can see with the same source IP, destination IP and port, sometimes the…
I was hoping people could provide some advice on setting up my first XG firewall, and specifically an Exchange General rule. My first question is, for the SSL part, do I need to import the cert from my Exchange server? In PFX format?
Hello all, thank you in advance for your advices,
I have some NAT web,ftp,mail Servers everyone with it's own public IP:
Server 1 public IP1 -> NAT -> DMZ-Server-IPaddress1
Server 2 public IP2 -> NAT -> DMZ-Server-IPaddress2
Server 3 public…
Hi,
I have a cPanel Server with Bind Name Server behind the firewall with many hosting domains inside, websites, emails, ftp, etc.
All services work correctly doing NAT with the required ports. The only problem is the DNS server (BIND). I do NAT of…
Can anybody tell me how to open FTP in the Sophos XG Firewall Home Edition. I tried creating a non-http business rule from any to my FTP server on port 21. From the LAN to my FTP server works like a charm but from WAN to my FTP server does not work. I…
It's me again with another annoying gripe with XG that I will probably solve 2 minutes after posting this, but such is life.
I am forwarding some ports, my web/email server works just fine, so I used the exact same type of rule but for port 8080 for…
Hi. It seems like country blocking is not working for WAN -> LAN (or any other protected network behind XG Firewall).
I have tested this with a proxy in the blocked countries.
I have this rule at the top of the list and network traffic still passes…
Hi ther,
I need a little help if possible .
I have an XG configured in Bridge mode
in the LAN zone I have a WEB server (a synology device) that I want to make reachable from the internet .
Creating the Business Application Rule in "http based…
Hi,
I am new to Sophos XG, I only installed it yesterday to replace my broadband router and give me a bit more flexibility, but I am having real trouble setting up some simple port forwarding.
All I am trying to do is forward incoming https requests…
Is it possible to use services or service groups in Business Application Rules? If not, where are they used. This is a really great feature of UTM so you can use the same services in multiple rules and change them if needed.
Has anyone been able to set up an HTTP/S server using the HTTP based policy?
I tried to do so, and was unable to get it to work. I have since created two non-HTTP based policies (one for port 80 and one for port 443) and now my server is reachable but…