• Firewall rule for internal web server access

    Sophos Redsquid
    Sophos Redsquid
    Hi, Looking for a bit of help, I have an XG210 firewall in place and need to access a webserver via port 80 on the internal network which listens on port 8040. Currently, with the rule in place, I can see the webpage appearing slowly with some elements…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Allow external ip

    Nicolas DOY
    Nicolas DOY
    I cannot allow traffic from an external ip and a specific port to my local server. I tried differents things but it doesn't work.
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Delete a DNAt Rule from CLI , accidently forwarded all ports to another machine

    Janam Khatiwada
    Janam Khatiwada
    Hello, i accidently click incoming connection to any while setting up Dnat and now i cant access sophos webportal, how can i delete this DNAT rule , is there any way to delete from cli?
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • RDP port forwarding with XG115

    Nikita Baranov
    Nikita Baranov
    Dear Team, I have looked through similar topics in this community but still was not able to enable RDP port forwarding from external network to a dedicated host within internal network. Please advise on what is configured wrong. I have created a firewall…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • SFOS 18.0.4 MR-4 port forwarding configuration

    tn_nb
    tn_nb
    Hi, We would like to get an example configuration for port forwarding with an external port and a different internal port. For example I would like people to hit my RDP with port number 3356 and forward it to my internal server port rdp (3389…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG v18 Home Edition Freigaben Ports

    PlaNet Fox
    PlaNet Fox
    Hi spiele mich mit der Home Version und Freigeaben. Ausgangslage Fritzbox (Einwahl ins Netz) Expost Host auf Sophos .Nat Regel erstellt wie unten . Komme nicht von außen auf den Webserver . Diverse Anleitungen schon versucht, Setup ist Routed. Jemand…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Configuration of procured static IP pool for the organization on multiple ISPs

    Sachin Bhatgare
    Sachin Bhatgare
    We have XG310 configured in active-active HA. We are in plan to procure a pool of static IP addresses for our organization. We have three ISPs Internet terminated on the firewall. Can we use our public IP addresses on the Internet of all the ISPs using…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • DNAT Problems on MR-5

    David Moro
    David Moro
    I've a simple configuration on XG86, Just a rule for navigation and a DNAT. If i try to reach the exposed service fails, my log say that fw rule and nat rule is correct but still reach the service. No strange routers or double nats. Any suggestions…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Port Forwarding a Minecraft Server

    Yasha Burns
    Yasha Burns
    Hello, I've setup a Minecraft server on one of our computers, and I tried using the wizard in the NAT Rules section. I have been working on this all day and have been reading other posts and nothing seems to work. Thanks, Yasha.
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Struggling getting plex port forwading to work

    Daniel Cook2
    Daniel Cook2
    Needing some help - i've followed every guide and no matter what i cant get it to work. I have port 1 as my lan connected to my switch serving out IPs including my Plex server 172.16.16.30 Port 2 is my WAN connected directly to the internet cat…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Access to more than one internal server with the same serivice

    Sami cnet
    Sami cnet
    Hi, I want help in this scenario: Access from outside to more than one internal server (3 as example ore more) with the same internal port (3389 as example, to access remote desktop for them), in fact I did it by DNat but for one server but not more…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Setting up DNAT on an XG VM behind a virtual bridge

    nevig_
    nevig_
    I have a Sophos XG 18.5 VM deployment within a proxmox virtual environment. LAN, WAN, and DMZ are, at this point, all talking and working as expected with the rules I've created. Sophos' ports are actually VMBRs within the VE: vmbr0 to lan, vmbr1 to wan…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Countryblock Rule does not match

    Guenter
    Guenter
    Hello, I created a Countryblock Rule as described here ( https://docs.sophos.com/nsg/sophos-firewall/18.0/Help/en-us/webhelp/onlinehelp/nsg/sfos/tasks/CreateFirewallSecurityRule.html ) but this rule does not match. My published Webserver must…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Connect to WAN interface from Guest Wifi Network

    Jason Hawke
    Jason Hawke
    I have created a Guest Wifi network on my XG UTM and placed it in a separate Zone and allowed ANY traffic to the WAN. It works fine. But I would like to be able to connect BACK to the WAN port for EXTERNAL access to certain port forwarded servers. Currently…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • DNAT not working

    Network Manager7
    Network Manager7
    I have just setup a DNAT rule on an XG running SFOS 18.0.4 MR-4. I created the rule using the Server Access Assistant. I can see traffic being allowed through on the firewall rule that was created but am unable to see the webserver that I have created…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • IPSec remote access with xg firewall

    Youcef Rahmouni
    Youcef Rahmouni
    Hi, I want to configure IPSec remote access on a XG FIREWALL VM v18.0.4 that i am currently using as a smtp gateway for our mail server. I configured IPSec to use the same public address and when i try to connect to the firewall using the sophos connect…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • internal ip issue

    Subrata Samanta
    Subrata Samanta
    Internally, I can not access the dns address as well as any other site that was published by sophos XG125. What must rule release to be able to access the publications made by sophos through my internal network ??? internal ip : 192.168.1.41 public…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • [how to] create a port forwarding rule for a subdomain

    Hyugai
    Hyugai
    So i have this domain and i need to do port forwarding from https://sub1.mydomain.com.au to my app01server at port 20443. So i created an A record that points the https://sub1.mydomain.com.au to my static ip address 14.XXX.XX.XXX. and now i need…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Restrict by IP address. - but only for one URL?

    David Harrison1
    David Harrison1
    Good morning all, I have a single windows DMZ box set up which is hosting a number of different websites, apis etc. I have one site on that box that I want to restrict by external IP address. I know in the firewall rules you can restrict by port…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • WAF rule works while disabled - strange behaviour

    oldgoodname
    oldgoodname
    Hi Guys, I'm using XG with the newest firmware (18.0.4-MR4) and I have a onlyoffice workspace test installation behind it. When I open onlyoffice via private IP or FQDN, it automatically redirects from http to https. So I think it's working as it should…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Block GeoIP rule - DNAT Blackhole - WAF no longer working

    Fred_B
    Fred_B
    I found an earlier thread that GeoIP blocking was not working as the system take precedence over firewall rules and therfore are never hit. The Sophos advice was to create a DNAT Blackhole rule to a non existing IP adress. So I tried creating a DNAT…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Why create a police rule + a DNAT (PAT) rule

    lauwiks Cutman
    lauwiks Cutman
    Good morning all I ask myself the question of the interest of the creation of a firewall rule when creating a DNAT rule (PAT). After my migration from 17.5 to 18, the import of my rules went well. I then needed to access an equipment from the outside…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • XG | BGP multihomed (WAN) | DNAT & SNAT

    lvillarreal
    lvillarreal
    Here my question: 1. How can I set up SNAT if my public Subnet (3.3.3.0/24) it´s not configure in any interface? It´s possible? Can I create a Loopback interface on XG? 2. Publish my website (DNAT)! Any idea? Notes: - I push my network (3…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Problems with inbound traffic on one WAN interface in a multi WAN setup

    Guy Soudant
    Guy Soudant
    Hi, I've been working on a Soiphos XG 125 v18 for the last week to get it production ready, setting up the WAN interfaces (2) and the DNATs and FW rules. I thought I had everything covered, but I'm running into an issue I simply cannot resolve. So if…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • RDP to Server with the XG WAN having a private IP

    Davox1
    Davox1
    My set up at the moment is ISP 210.250.200.10 => Router 192.168.1.1 => XG WAN interface 192.168.1.55 => DMZ Server 192.168.206.10. I would like to RDP to my server in DMZ from the internet. The problem i am having is that my XG is not directly connected…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>