• Certificate Update not possible when used in Firewall-Rules

    MarkusArndt
    MarkusArndt
    Hi, I have HTTPS-Certificates from LetsEncrypt.com for all my subdomains. I uploaded the Certificate in the XG und used them in many Firewall-WebServer-Protection-Rules. This Certificates expire after 90 days and I have a Script do renew them easily…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Business Application Rule - must select an IP Range for Protected Server(s) / dnat ntp

    CyberA
    CyberA
    I'm having trouble setting an IP range for an internal DNAT rule to redirect NTP (UDP/123) traffic destined for the WAN to an internal server in LAN. A single IP entry works but I want the rule to catch <ANY> destination IP heading to the WAN interface…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Email Scanning Rule Not Applying

    OliverKnights
    OliverKnights
    Hi All, I created a business application rule to allow SMTP access to my exchange server using the email servers (SMTP) template. Below are my settings: Now, on my LAN network i can get a connection on port 25 to the SMTP server by using the external…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • DNAT - FIREWALL - BUSINESS APPLICATION RULE - ISSUE

    Andrea cHESSA
    Andrea cHESSA
    Hi, I'm new in XG but I've installed Hundreds of Astaro (since V6) and Sophos UTM. In this days I've started to work with XG and this is my question, is this normal? as you can see with the same source IP, destination IP and port, sometimes the…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • Creating an Exchange General rule

    Nick Stiglitz
    Nick Stiglitz
    I was hoping people could provide some advice on setting up my first XG firewall, and specifically an Exchange General rule. My first question is, for the SSL part, do I need to import the cert from my Exchange server? In PFX format?
    • Answered
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • Hair pinning rule in v16 issue

    SimoneMontagnani
    SimoneMontagnani
    Hello all, thank you in advance for your advices, I have some NAT web,ftp,mail Servers everyone with it's own public IP: Server 1 public IP1 -> NAT -> DMZ-Server-IPaddress1 Server 2 public IP2 -> NAT -> DMZ-Server-IPaddress2 Server 3 public…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • External DNS Query IssueDNS

    F. JavierLancharro Ramiro
    F. JavierLancharro Ramiro
    Hi, I have a cPanel Server with Bind Name Server behind the firewall with many hosting domains inside, websites, emails, ftp, etc. All services work correctly doing NAT with the required ports. The only problem is the DNS server (BIND). I do NAT of…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • how to open FTP ports on Sophos XG Firewall

    JeffreyJaspers
    JeffreyJaspers
    Can anybody tell me how to open FTP in the Sophos XG Firewall Home Edition. I tried creating a non-http business rule from any to my FTP server on port 21. From the LAN to my FTP server works like a charm but from WAN to my FTP server does not work. I…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • RE: Publish Exchange 2010 through XG Firewall Templates

    MarcKamel
    MarcKamel
    me also face the same issue with exchange 2010 it not work also there is not any artical on how to do that
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • Port forwarding only works for one server????

    AdamBlunt
    AdamBlunt
    It's me again with another annoying gripe with XG that I will probably solve 2 minutes after posting this, but such is life. I am forwarding some ports, my web/email server works just fine, so I used the exact same type of rule but for port 8080 for…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • Country Blocking Not Working for a WAN > LAN Rule

    Timothy Stewart
    Timothy Stewart
    Hi. It seems like country blocking is not working for WAN -> LAN (or any other protected network behind XG Firewall). I have tested this with a proxy in the blocked countries. I have this rule at the top of the list and network traffic still passes…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • Business rule and Bridge configuration surprising behaviour

    NicolasRICHARD
    NicolasRICHARD
    Hi ther, I need a little help if possible . I have an XG configured in Bridge mode in the LAN zone I have a WEB server (a synology device) that I want to make reachable from the internet . Creating the Business Application Rule in "http based…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • Trying to forward https, get "SSL connection error"

    PaulRoberts
    PaulRoberts
    Hi, I am new to Sophos XG, I only installed it yesterday to replace my broadband router and give me a bit more flexibility, but I am having real trouble setting up some simple port forwarding. All I am trying to do is forward incoming https requests…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • Use Service Group in Business Application Rule

    JasonKnott
    JasonKnott
    Is it possible to use services or service groups in Business Application Rules? If not, where are they used. This is a really great feature of UTM so you can use the same services in multiple rules and change them if needed.
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • Need help getting HTTP based policy to work

    JohnFox
    JohnFox
    Has anyone been able to set up an HTTP/S server using the HTTP based policy? I tried to do so, and was unable to get it to work. I have since created two non-HTTP based policies (one for port 80 and one for port 443) and now my server is reachable but…
    • over 9 years ago
    • Sophos Firewall
    • Discussions
<