• Serverzugriff über IPv6 DNAT funktioniert nicht

    Moritz Wiesenmaier
    Moritz Wiesenmaier
    Hallo Community, ich versuche derzeit mein Netzwerk von außerhalb erreichbar zu machen. Da ich über einen DS-Lite tunnel verfüge, muss ich dies über IPv6 verwirklichen. Von meinem ISP wird mir ein dynamisches IPv6 Präfix zugewiesen. Da ich keine Funktion…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • WAN IPv6 to DMZ/LAN IPv4

    EGT
    EGT
    Hello Forum! I have a little challenge here. TLTR: Translating WAN IPv6 to LAN IPv4. I would like to make various services accessible via IPv4 and IPv6 from the WAN side. Internally in the LAN and DMZ I would like to continue working only with IPv4…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • Version 18 and the Nat Rules

    Alex Harding1
    Alex Harding1
    Hi Guys Hoping someone can help me as I'm struggling a bit with V18 and the decoupling of NAT rules. I know it works as its working on V17 without issue. We have a vlan and within that vlan there is a device which requires WAN access. I have created…
    • Answered
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • Sophos Firewall: How to source NAT incoming IPsec traffic on v19 and above

    emmosophos
    emmosophos
    Disclaimer : This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment. Table of Contents Overview What to do How-To Translation…
    • over 4 years ago
    • Sophos Firewall
    • Recommended Reads
  • Give public IP an alias name

    Jonathan Nali
    Jonathan Nali
    Hi everyone, I wonder if this is possible. I did a NAT rule so users outside the network can access a particular application that is behind the Firewall(Sophos XG) So, currently, the access is this way: public IP/ApplicationName I would like to…
    • Answered
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • NAT DNS Service to LAN address

    Brian Thill
    Brian Thill
    I want IoT devices to use my internal DNS server. I setup a NAT rule to translate inbound DMZ interface to destination internal DNS server and I have a matching firewall rule but the traffic is getting dropped. IoT device calls to 8.8.8.8 on Port 53…
    • Answered
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • NAT between IPSEC and SSL VPN

    Developers VerticalBooking
    Developers VerticalBooking
    Hi all, I own a XG135 cluster, with some IPSEC VPNs to some external endpoint and an incoming SSL VPN; all works fine. Now I'd like to give to the SSL VPN an access to the IPSEC tunnels and I thought to do that through a NAT (natting the exiting SSL…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • Sophos Firewall: How to configure firewall rule and NAT rule on Sophos Firewall

    taowang
    taowang
    Disclaimer : This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment. Table of Contents Overview LAN-to-WAN traffic Specify…
    • over 4 years ago
    • Sophos Firewall
    • Recommended Reads
  • Blackhole NAT + DROP firewall - Accept anyway?

    KekesiV
    KekesiV
    Hi Community! I've set up a blackhole DNAT ( https://support.sophos.com/support/s/article/KB-000038943?language=en_US ) and added a firewall rule: I can see a lot of IP going to the dummy address and being blocked (on TCP443 it's rejected with 403…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • Cannot reach Gateway when VLAN in on LAN on Sophos XG

    Jonathan Nali
    Jonathan Nali
    Hi everyone, I know the question may not be clear but here it is. I have managed to get connectivity between the branch and HQ. I can ping and access devices on both sides. The issue is, when VLAN551, which is the data vlan, is on WAN, the cisco…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG 18 and Plex Remote Access

    dma0
    dma0
    I was wondering if anyone has been able to successfully configure Sophos XG 18.0.1 so that Plex remote access is enabled. Prior to v18, I had created a firewall business application rule based on the various posts in this forum and it worked just fine…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • Setup Question LAN/WAN VPN

    Hinze
    Hinze
    Hi ! I'm quite new to XG Firewall. I've got the following Setup: XG Softwarebased setup on 2 Lan Card PC Port 1 LAN with Range from 192.168.1... Port 2 WAN with Statik IP 192.168.3.... getting it from Router LAN Router with static IP Adress…
    • Answered
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Maskierung VPN Tunnel

    MaxRiedel
    MaxRiedel
    Hallo zusammen, ich habe bei einem Kunden der zwei Standorte hat ein Side-to-Side VPN über IPsec am laufen. Der Kunde sitzt in Standort A und greift per RDP auf Standort B zu. Der Kunde hat für eine ganz Spezielle Webseite eine Router gesetzt, die die…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Is it possible to set up Full Nat rule for an entire subnet?

    Albert Tejada
    Albert Tejada
    I will try to explain this as best as I can with my limited knowledge in networking. This is using XG 210 hardware. We have setup a connectivity from our Azure VNet to our on premises location with a XG 210. In our Azure VNet we have a subnet (ex. 172…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • IPSEC - Masquerade/NAT 4 Hosts Behind Peer IP

    NateP
    NateP
    Ok, something that I've easily done many times on all of our UTMs. I have a new IPsec tunnel I built to a 3rd party. We are just accessing a single remote (198.0.0.2/32) host configured in the tunnel, but it needs to be accessed from 4 different hosts…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Creating SNAT policies increases the count of firewall rules exponentially. Is there anyway around this?

    Matti Taina
    Matti Taina
    Say I want to filter outbound traffic from LAN to WAN with a bunch of different rules for all hosts, and do a separate SNAT policy for a specific LAN IP address. I create a bunch of outbound rules for the whole network, so I'll have to create another…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • 61 Internal devices, same internal port, external port +1 each time.

    Bradley Shaner
    Bradley Shaner
    I'm in the process of setting up NAT for 61 new devices that must be monitored externally. The INTERNAL port for most of these devices are 80, but the EXTERNAL port must be 1000, 1001, 1002, etc until they can each be reached. I have a XG310 (SFOS 16…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Zugriff von Standort A über VPN auf spezielle externe IP-Adresse über Feste-IP von Standort B

    Adolar
    Adolar
    Hallo zusammen, ich probiere hier schon ewig rum, evtl. kann mir von euch jemand einen Tipp geben. Welches Problem habe ich? <Client> -> <SITE A> -> <IPSec-VPN> -> <SITE B> -> <STATIC EXTERNAL IP> -> <Backend> Ich müsste vom Standort A über den VPN…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • VPN Verbindung von WLAN ins LAN

    Marcel Ruch
    Marcel Ruch
    Wir haben eine Firewall XG. Mit dem SSL VPN Client verbinden wir uns ins LAN. Das funktioniert soweit. Nun haben wir auf der Firewall einen weiteren Port auf dem das WLAN in einem anderen Subnetz liegt. Das WLAN hat keinen Zugriff auf das LAN. Um vom…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Does XG site to site IPsec VPN support Nat traversal

    Stephen Wratten
    Stephen Wratten
    I don't see the option on the Sophos XG to enable Nat traversal on a site to site VPN using IPsec, where one side will be behind a router doing NAT Is this enabled by default, or just not supported.
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • LAN hosts can't get outbound

    Stetson Blake
    Stetson Blake
    Working with a new Sophos XG setup and I'm almost certain this is a noobie mistake. My lan interface cannot get outbound to the internet. I can ping my inside gateway and the outside IP of the Sophos, but no further. I have configured a rule to allow…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • NAT Regel ANY -> VM Kaspersky Port 13292NAT

    Oliver Heinlein
    Oliver Heinlein
    Hallo zusammen, wir haben Kaspersky Security Center 10 bei uns im Einsatz. Nun sollen unsere AD Mitarbeiter Smartphones erhalten welche Kaspersky Endpoint Secutity installiert haben, und mit Security Center verbunden sind. Damit die auch funktioniert…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • I need to set up a policy for my Xbox One, can anyone help me?

    BRUNO NOGUEIRA
    BRUNO NOGUEIRA
    I currently use the cisco rv325 router, with the following settings subnet VLAN for Xbox one: My network topology Router Settings cisco RV325 Server Settings XG Firewall This setting is not working, NAT strict appears
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Track ATP event through Meraki NAT

    Joe Plunkett
    Joe Plunkett
    I have an XG reporting that there is an ATP event. The address it is giving me is for the source is our Meraki AP. I do not think the Meraki is infected but more likely one of the clients connecting to that AP is. The Meraki is Natting addresses, so…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • 1:1 NAT whole subnet

    André Reinhold
    André Reinhold
    I'm trying to nat the subnet 192.168.100.0/24 to 192.168.200.0/24 in a manner that 192.168.100.1 corresponds 192.168.200.1, 192.168.100.2 to 192.168.200.2 and so on. That was easily configurable in UTM but I cant find a solution for the XG firewal. …
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • View related content from anywhere
  • More
  • Cancel
<>