So this is basic I'm setting up a firewall rule to allow specific VPN traffic Here's the specific service definition Attempting to setup a VPN, I get this... Here are some of the same drops from the full firewall log Why is this traffic…

Ok, so how specifically do I ' set the corresponding intrusion protection rule to "drop" in WebAdmin ' per the alert email below I received? There is no 'rule' identified in the alert. Am I supposed to infer that 58442 in the snort link is the rule…

Hello all, Networking certainly isn't my forte and I've only really been handling our UTM sporadically for 2 years, so please bear with me. I did not install the UTM nor was I the primary admin, but I want to make sure that we're decently secure. …

Hallo zusammen, ich habe ein kleines Problem bzw. einen Denkfehler wie ich verschiedene VLANs verbinde. Die Anforderung sieht vor, dass die Kommunikation über ein ungenutztes, selbstständiges V-LAN (bsp. VLAN2) laufen soll. Mitarbeiter aus bsp.…

We use the 8x8 Work Desktop application. The app employs WebRTC and I'm getting a few hundred thousand default drops for UDP packets going to 8x8 turn servers every 24 hours. The turn server IP addresses (all 8x8 IP addresses for that matter) are in the…

Currently, the UI in the UTM allows blocking active content which includes ActiveX, Java, and Flash. Flash is now obsolete and considered risky to use at all. The manufacturer is now blocking it. I propose the UI be chanced to allow for the blocking…

Hello Sophos-Community, my problem is the following: I am trying to set the following permissions for our ssl vpn: access to 192.168.13.0 access to 192.168.13.11, but just a specific port. It shouldnt be a firewall deny or discard rule because…

Hi all, Just a small question, what's better? Doing 1 rule including ALL the needed services for ingress egress destination OR doing multiple rules (one per targeted services)? Thanks, Regards, M-

Hallo alleseits, ich benötige einen Tipp oder besser eine Lösung für folgendes Problem. Ich benötigen einen Auszug aller Rules um sie 1. einem Auditor vorlegen zu können und/oder 2. sie in jeglicher Form zu dokumentieren. Im Zweifel auch zur Not…

hello all, I am trying to connect remotely to another network using VMware Horizon View (PCoIP) over UDP/TCP port 4172. I have created the firewall rule to allow the traffic to go out the firewall to the remote site, but it is still showing up in the…

I am new to this and just finding my way around setting up utm/firewalls i have a 2 firewall setup an internal sophos utm 9 ffirewall and an external firewall The internal firewall sophos utm 9 is setup where all computers and mobile devices are behind…

HI, I have set NAT an FW to allow bittorrent use port 35951 (TCP/UDP) all looks ok but at live FW log i see lot of DROPs at this port 19:03:28 Default DROP TCP 178.40.178.147 : 50762 → WAN IP : 35951…

Hi, I have a 'MALWARE-OTHER Executable control panel file download request' false positive that I need to put an exception in for. I don't want to exclude the entire rule or detection, just whitelist this host that is triggering the false positive…

Hey all, I'm fairly new to Sophos and firewalls in general (not my forte), and I've been scratching my head over something. Everything is set to pretty much default, plus a few URL filtering and Application Control tweaks, but I'm having trouble with…

I just recently setup the Sophos UTM Home Edition at my house, and left most things as default. I've had to make a few tweaks here and there, but as it stands, I have URL filtering enabled with just a few categories being blocked. That said, my sister…