After updating to v19.5 the back-up to the remote location stopped as this was relying on udp port 1194.
Internet: Experiabox (DMZ) --> XGS 126
The settings are given below. Any idea how to solve?
---
John
Hi, hoping someone can help. Apologies for the long post.
*** This looks like a repost from another user but for some reason when I logged in to the community recently it set up a new account for me. I am the OP of this thread**
ALSO, Although in…
Hi I have a firewall who is behind an ISP router The wan port is connected directly to my ISP router via PORT 2 and i've assigned to it a private IP@
Now when deploying RED devices , the support asked me to give the Port 2 a public IP@ , wish i don…
Hello,
is there any way to allow LE without manual enabling firewall and nat rules? I have couple of web servers on same port 443 and I would like to enable them to use LE for generating new and renewing certificates but I'm unable to find the way.…
Hello, i was trying to open the PORTS to all Internal users, but the rule still blocking the access.
please verify that am doing port forws correct way for all internal users.
Thanks
Hi,
I am trying to create rule on firewall so camera monitoring company can check our cameras from outside. I need help to setup this firewall rule.
Thanks
Hi.
I'm running SFOS 19.0.1 and are currently migrating my mail. We have our own antispam (Xeams) placed in our DMZ and have no subscription for Sophos antispam solution. I really need some guidance on howto make Sophos work with an existing antispam…
Hi all,
I need some help.
recently I installed a new server with a web application to be accessed by LAN users.
I must open the application port (8070)in the local network to be accessed by users using web browser.
thanks
Hello,
I 'm using a Sophos XG firewall. When I generate a Buissness Firewall Roule and want to save it I get the popup:
"Invalid port in mapped ports list/range"
This also happens when I try to clone a existing Buissnes Roule .
Can anyone tell…
Hi, hoping someone can help. Apologies for the long post.
I'm currently building a Sophos XG appliance to replace my UTM9 as I've exceeded the 50 IP limitation on the home license. Rules and filters etc are slowly but surely being recreated in XG but…
Hi, We are moving from SG UTM to XG Firewall. In our previous setup on our UTM, our exchange environment (among other things) uses an Alias IP of an internal vlan as a virtual server address for load balancing. The UTM handles all traffic to the "Load…
I've got 2 web servers on different local IP. Both IIS. (x.x.x.7 and x.x.x.21)
I've done 2 waf rules on firewall but i've got a DNAT on HTTP direct connect to 1 server (x.x.x.7)
It is necessary have DNAT rules (loopback and reflexive also)?
Infact…
New to Sophos. Was able to set up DNAT on my XGS 126.
The rule above is working, but how do I limit the UDP to a specific port#? When I try to edit UDP I'm not able to save that value.
---
John
Hello,
I recently installed a sophos home firewall and iam a bit inexperienced so sorry if this a stupid question! :D
I have a plexserver running in my LAN network but my firetv sticks all are in the wireless network from my router (also the WAN network…
We are facing a strange issue. We have a Sophos Firewall XGS2300 running on SFOS 19.0 with a single ISP link.
Most of our users connect over SSL remote access VPN. We have a internal server that is accessed from the WAN side over ports 7070 and 1470…
Using XG v19.0.0
Does a NAT loopback also normally allow access to the internal resource from the internet? I'm tryin to understand if I have a serious access issue, or if the following is normal behavior.
1. I built a web server on a DMZ zone network…
Hello!
I have trouble configurating access to my internal web server. I used the DNAT Assistant but it still does not work. After some troubleshooting I collected the following infos:
TCP Packages do reach the webserver but the webserver returns the…
Hello,
Seeing some I suppose unexpected behavior when configuring DNAT on Sophos Firewall (v19).
I am configuring an ingress DNAT from the internet to my Plex server. When configuring a NAT policy, I would expect to define the following:
Original…
Discovered this little gotcha when creating services for https port redirection.
When creating the new port keep the source port as general ie. tcp/udp (1-65535) NOT the port you want to use.
example which works
NOT source TCP 4433
Hello,
Situation: I have published web services in one of my Wan1 with DNAT/SNAT and I am looking for a way that if my ISP provider of my Wan1 fails, the inbound traffic from Wan2 is automatically redirected. What comes to be a Round Robin. Thank …
Hi All,
I think I need a little help.
1. Used DNAT rule to route public ip to private ftp server - service FTP.
2. set advanced-firewall ftpbounce-prevention data
3. On my local network I can login to my ftp server via "ftp public_ip" I can…
I'm a home user, and I'm trying to configure my Foundry VTT server. via my XG v19.
When I try to http to it via the WAN, I get a violation error (as you can see in the logs).
I can HTTP to it using my fqdn ( http://titanbananabefore.online/) via my…
I have a Sophos XG behind which is a server which I'd like to access via RDP. I have DNAT setup to forward the port to the server, but I don't want to leave it turned on all the time. I could turn on remote HTTPS to the FW, and turn the DNAT rule on and…
Hi,
I have DVR in branch office with sophos firewall.
before install FW , the admin of dvr connect to dvr camera with his phone by gDMSS application.( but only too view what camera show)
the access from external is not to dvr web admin.
After…
Hello Team
We have created one DNAT Rule for one of our Application to connect from outside. When users are login into application from outside and we check the netstat status in command prompt on windows server, we are not getting the public IP of…