For unknown reasons, our UTM Queen is collecting only a single log line in reverseproxy.log each day. Our UTM Workers are storing reverseproxy.logs correctly. What's a good first step to debugging this? We are running a Sophos UTM HA cluster with…

Hello! We use the WAF Feature of our Sophos UTM for a few months now to make our RD Gateway (Windows Server 2012 R2) accessible from the outside. It is working fine for Users on any Windows Client if they use the "old" RDP Client, but it is not working…

Hello, I am tried to have a test for a WAF of SG. I made a test lab using vmware and I configured a vulnerable website using DVWA. And then tried to send attack traffics from a Kali Linux (name of tool that I used is OWASP ZAP.) to DVWA. Also i ran…

Hello, I have a VPN Router in a DMZ, what is routing all my Internet Traffic to a VPN Service. I was wondering to protect the Router in the DMZ, if it would make sense activate Web Application Firewall for this Router ? I know that this settings…

Hello All, I am looking for a list of SG WAF. I want that the rule list need to include detail info, risk level, remediation and other related useful information. I tried to find out this information from GitHub, modsecurity.org and others but I couldn…

Hi, I like to block Upload MIME Types, except text/plain. Is it possible to negate the blocked list in True File Type Control. Or has someone a list of MIME Types to import. TNX Nathan using UTM 9.502-4

Hello, guys! I have a question regarding reverse proxy using the UTM: Basically what I want to do is this: I have a dyndns service. I have a name e.g. server.dyndns.com I have long ago configured WAF with a Virtual webserver and the real webserver…

Guten Abend, ich bin der Anleitung von frankysweb gefolgt um den Exchange über die WAF zu betreiben. Es funktioniert auch alles soweit bestens, biss auf die Tatsache, das die App Owa for iPhone sich nicht mehr verbindet oder einrichten lässt. Im WAF…

Hi! Today my Let's Encrypt certificates expired. I'm using the script from here: https://github.com/rklomp/sophos-utm-letsencrypt now when I try to validate the scripts, I get an error but only for one domain. I set up Site-Path-Routing…

In the discussion about 9.501-5, Paulo Rocada raises the issue that in version 9.501-5, WAF not longer connects to Server 2003 R2, although 9.4 worked. I assume this is related to cipher suites. First, this points out the problems with Sophos Release…

Hi, I was just wondering if anyone else has experienced any similar issues? We've had a couple of these - about 2 months apart. We're using UTM 9 as a WAF to publish our Exchange Webmail. The system stops authenticating webmail logins and also logging…

I'm running 9.413-4 on a pair of Active/Passive SG330s. from 4 to 10 times per day, WAF will stop working. I know when it happens because my external web site monitors light up my phone. The only fix seems to be rebooting the active UTM. After I do that…

Hi, is there a way to use HTTP/2 in the WAF, i can't find an option and Firefox show me version 1.1. (The desired webserver supports HTTP/2) Also i can't find any information about this? Best Regards

Hi @all, I am trying to publish Good DirectConnect via the Webserver Protection. I first tested with portforwading (FullNAT) wihich is working fine, so I guess the mobile Device and the Good Server are configured correctly. If using WAF, the Client…

Hi, Thawte create a new CA. now i get a "B" within SSL-Server-test. Problem message is "This server's certificate chain is incomplete. Grade capped to B. " Must i import the new CA certificate only or the SUB-CA certificate too.

I have a few HTTPS sites successfully published through my UTM Firewall (mostly Exchange Admin Console/Outlook Web Access). I'm now trying to set up another application, using a different domain name, but the Web Application Firewall log is reporting…

Hallo zusammen, der Reverseproxy meiner UTM funktioniert nicht mehr. Alle echten Webserver werden grün angezeigt. Die UTM wurde bereits neugestartet. Es sind keine Firewall Profile an die WAF gebunden. Das Sitepath Routing hat sich auch nicht geändert…

Utilizing Azure S2S IPSec VPN tunnel. Can access a VM behind the firewall just fine. Trying to setup a WAF to connect to a web application in Azure. I've gotten it to work a couple of times but it seems very persnickety. Right now, and the situation I…

Hello, I currently have a Sophos in our local office connected to our AWS VPC's. I an trying to use UTM as a Intraweb WAF for hosts that are inside our AWS VPC. I can connect directly to the AWS VPC host from the local network, but when I login…

I am thinking the answer is no, but want to confirm. Is there a way to use reverse authentication on a web server without OTP if OTP is enabled for WAF? I do not see it in the list of exceptions.

After looking through the UTM 9 features it looks like Web Filtering and Web Application Firewall offer a SSL inspection. It's my (potentially flawed) understanding that WAF and Web Filtering do not equal IPS. Is IPS blind to SSL traffic or is there…

Hallo zusammen, ich stehe gerade etwas auf dem Schlauch und könnte etwas Hilfe gebrauchen. Bin gerade dabei OWA (Exchange 2010) besser abzusichern. Dabei habe ich mich ziemlich an die Anleitungen von https://www.frankysweb.de gehalten, funktioniert…

I can no longer use Filtering->Antivirus, Single Scan, Uploads in any of my WAF Firewall Profiles. I get the following message on all webpages when I try to access any of the websites: ... Bad Request Your browser sent a request that this server…

Hello, One of our customers wants to configure the WAF to detect and block for the XSS Referer and X-Forwarded-for vulnerability. Is it possible to detect and block for the XSS Referer and X-Forwarded-for vulnerability? If it is impossible on UTM9…

Hello, I hope someone can help me with this issue as I am completely confused with this. I have configured 2 WAN interfaces both with there own external IP's. Both WAN can ping out to 8.8.8.8 so i know the internet connectivity is there. However here…