• UDP port 1194 closed (started after update to 19.5)

    John245
    John245
    After updating to v19.5 the back-up to the remote location stopped as this was relying on udp port 1194. Internet: Experiabox (DMZ) --> XGS 126 The settings are given below. Any idea how to solve? --- John
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Help! NAT that works on UTM9 not working on SF/XG.

    DS7109
    DS7109
    Hi, hoping someone can help. Apologies for the long post. *** This looks like a repost from another user but for some reason when I logged in to the community recently it set up a new account for me. I am the OP of this thread** ALSO, Although in…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • RED NAT PUBLIC IP PORT CASE ID : 05887593

    support support18
    support support18
    Hi I have a firewall who is behind an ISP router The wan port is connected directly to my ISP router via PORT 2 and i've assigned to it a private IP@ Now when deploying RED devices , the support asked me to give the Port 2 a public IP@ , wish i don…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Allow LetsEncrypt without DNAT

    Carlo
    Carlo
    Hello, is there any way to allow LE without manual enabling firewall and nat rules? I have couple of web servers on same port 443 and I would like to enable them to use LE for generating new and renewing certificates but I'm unable to find the way.…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG port forwarding

    feroz syed
    feroz syed
    Hello, i was trying to open the PORTS to all Internal users, but the rule still blocking the access. please verify that am doing port forws correct way for all internal users. Thanks
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Need help with PAT

    I T2
    I T2
    Hi, I am trying to create rule on firewall so camera monitoring company can check our cameras from outside. I need help to setup this firewall rule. Thanks
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Problem with Sophos together with my own spam filter

    Conny Ljungqvist
    Conny Ljungqvist
    Hi. I'm running SFOS 19.0.1 and are currently migrating my mail. We have our own antispam (Xeams) placed in our DMZ and have no subscription for Sophos antispam solution. I really need some guidance on howto make Sophos work with an existing antispam…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Open port to access local server web application

    Omar Al Sous
    Omar Al Sous
    Hi all, I need some help. recently I installed a new server with a web application to be accessed by LAN users. I must open the application port (8070)in the local network to be accessed by users using web browser. thanks
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Invalid port in mapped ports list/range

    gerd Buchhardt
    gerd Buchhardt
    Hello, I 'm using a Sophos XG firewall. When I generate a Buissness Firewall Roule and want to save it I get the popup: "Invalid port in mapped ports list/range" This also happens when I try to clone a existing Buissnes Roule . Can anyone tell…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Help! Migrating tricky NAT rules from UTM to XG 19

    DCALS
    DCALS
    Hi, hoping someone can help. Apologies for the long post. I'm currently building a Sophos XG appliance to replace my UTM9 as I've exceeded the 50 IP limitation on the home license. Rules and filters etc are slowly but surely being recreated in XG but…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG DNAT Load Balancing Exchange Services

    Timothy O'Brien
    Timothy O'Brien
    Hi, We are moving from SG UTM to XG Firewall. In our previous setup on our UTM, our exchange environment (among other things) uses an Alias IP of an internal vlan as a virtual server address for load balancing. The UTM handles all traffic to the "Load…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Two web servers on one ip public - question about DNAT

    Marco Alunni Pini1
    Marco Alunni Pini1
    I've got 2 web servers on different local IP. Both IIS. (x.x.x.7 and x.x.x.21) I've done 2 waf rules on firewall but i've got a DNAT on HTTP direct connect to 1 server (x.x.x.7) It is necessary have DNAT rules (loopback and reflexive also)? Infact…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • How to specify UDP port in DNAT rule

    John245
    John245
    New to Sophos. Was able to set up DNAT on my XGS 126. The rule above is working, but how do I limit the UDP to a specific port#? When I try to edit UDP I'm not able to save that value. --- John
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Making 1 LAN adress available to the WAN network

    Georgios Maramis1
    Georgios Maramis1
    Hello, I recently installed a sophos home firewall and iam a bit inexperienced so sorry if this a stupid question! :D I have a plexserver running in my LAN network but my firetv sticks all are in the wireless network from my router (also the WAN network…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • SSL VPN fails when DNAT rule applied

    Mayuresh Bhagwat
    Mayuresh Bhagwat
    We are facing a strange issue. We have a Sophos Firewall XGS2300 running on SFOS 19.0 with a single ISP link. Most of our users connect over SSL remote access VPN. We have a internal server that is accessed from the WAN side over ports 7070 and 1470…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG NAT Loopback question

    Craig Glaser
    Craig Glaser
    Using XG v19.0.0 Does a NAT loopback also normally allow access to the internal resource from the internet? I'm tryin to understand if I have a serious access issue, or if the following is normal behavior. 1. I built a web server on a DMZ zone network…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Internal Webserver has no route to WAN

    Biorez Tech
    Biorez Tech
    Hello! I have trouble configurating access to my internal web server. I used the DNAT Assistant but it still does not work. After some troubleshooting I collected the following infos: TCP Packages do reach the webserver but the webserver returns the…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Internet Ingress DNAT - Odd Config Requirements?

    ASC11
    ASC11
    Hello, Seeing some I suppose unexpected behavior when configuring DNAT on Sophos Firewall (v19). I am configuring an ingress DNAT from the internet to my Plex server. When configuring a NAT policy, I would expect to define the following: Original…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • HTTPS Port address translation (PAT) not working

    brent sergent
    brent sergent
    Discovered this little gotcha when creating services for https port redirection. When creating the new port keep the source port as general ie. tcp/udp (1-65535) NOT the port you want to use. example which works NOT source TCP 4433
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • wan failover

    José Manuel González García
    José Manuel González García
    Hello, Situation: I have published web services in one of my Wan1 with DNAT/SNAT and I am looking for a way that if my ISP provider of my Wan1 fails, the inbound traffic from Wan2 is automatically redirected. What comes to be a Round Robin. Thank …
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • FTP Server (Passive Mode) on WAN Interface via DNAT - WAN -> Local Server - stuck with SYN_RECV on local server.

    precious pangolin
    precious pangolin
    Hi All, I think I need a little help. 1. Used DNAT rule to route public ip to private ftp server - service FTP. 2. set advanced-firewall ftpbounce-prevention data 3. On my local network I can login to my ftp server via "ftp public_ip" I can…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • DNAT problems

    Graham Chow
    Graham Chow
    I'm a home user, and I'm trying to configure my Foundry VTT server. via my XG v19. When I try to http to it via the WAN, I get a violation error (as you can see in the logs). I can HTTP to it using my fqdn ( http://titanbananabefore.online/) via my…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Strategy for RDP to server behind firewall?

    atsushi kami
    atsushi kami
    I have a Sophos XG behind which is a server which I'd like to access via RDP. I have DNAT setup to forward the port to the server, but I don't want to leave it turned on all the time. I could turn on remote HTTPS to the FW, and turn the DNAT rule on and…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • connect to dvr camera from external

    Fotit
    Fotit
    Hi, I have DVR in branch office with sophos firewall. before install FW , the admin of dvr connect to dvr camera with his phone by gDMSS application.( but only too view what camera show) the access from external is not to dvr web admin. After…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Destination Server not showing public ip of remote host in netstat

    Sophos User6458
    Sophos User6458
    Hello Team We have created one DNAT Rule for one of our Application to connect from outside. When users are login into application from outside and we check the netstat status in command prompt on windows server, we are not getting the public IP of…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>