• XG V19 port forwarding but getting Local ACL Violation

    Bryan Lucas
    Bryan Lucas
    Good Day, I'm trying to set up a port forward (RDP) from my WAN interface to a device on my LAN. The rule migrated from V18 MR4 isn't functioning, and neither are any rules I set up from scratch. Any FW/NAT rules I set up show zero on their counters…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Error acess Website sophos

    sansao machiana
    sansao machiana
    help in my company we have an XG 230 all the rules are configured and working we could go the other web pages. but when we try to access our web page from the internal network the firewall takes us to the authentication page. already pointed the host…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • No Ping after DNAT

    sebmoe
    sebmoe
    Hi folks, I have the following problem: I have an icinga 2 running in my network and I want it to ping a remote network via S2S. This does work, but as soon as i create a DNAT with HTTP and HTTPS to my icinga, it stops working. What i tried: …
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Unable to forward Plex for direct connection

    Eric Gosselin
    Eric Gosselin
    Hi everyone, I just upgraded my old sophos UTM, to the new XG firewall (SFOS 19). Now I can't make my Plex server accessible from internet. I try to use de DNAT server assistant, but it doesn't work. Did someone manage to permit direct connexion for…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • NAT rule for Loopback and VPN connections

    Can carmack
    Can carmack
    v18 newbie here. in earlier version 17, there was only the firewall rules for all connection types. In 18, have to create nat rules too. There is no usage count on some of my migrated after 2 weeks from upgrade. Lan to lan communication requests…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • WEB SERVER PUBLISHING CHALLENG

    Jackson Awe
    Jackson Awe
    Hi I got a challenge publish my internal server for the first time i was succeed to publish using DNAT but the internet connection in the LAN IS DISCONNECTING EVERY TIME but the server is in LAN and it has network
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Tapi behind Firewall Sophos XG

    Eduard
    Eduard
    Hello, I can not get connection with Elmeg Router TAPI Driver from my client to telefon System we use following setup: Internet --> Elmeg Router which has a telefon system build in ---> Sophos XG Firewall ----> Local Lan Client The client…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG CR35wiNG (SFOS 17.5.15 MR-15 . Issue about Port Forwarding

    Adam Adam1
    Adam Adam1
    Hi All How can i set the Sophos up to acces printer form the outside of the network. Are you able to explain it to me ? Thanks All the best
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Cellphone Mobile Extensions port forwarding

    Euliana Masuka
    Euliana Masuka
    Hi everyone? l am having challenges port forwading on SOPHOS XG86 (SFOS 18.0.5 MR-5-Build586) C0A100TC22HGK7D port forwarding for SIP and RTP on your router
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • ssl vpn to dnat

    lior me
    lior me
    hi i have currently a dnat for a local pbx in sophos xg firewall from the wan, everything works fine. but when a user connects to vpn, he cannot reach the public ip, thus can't use the pbx. this public ip seats in the same FW as the vpn, same system…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Microsoft Always On VPN through the XG - connection problem with users coming from another enterprise network

    balletbob
    balletbob
    Hi, We have DNAT rule setup for our Microsoft Always On VPN but have two locations we travel to where on those network we can't get the VPN to negotiate connection successfully. I need to validate what we have setup to figure out what is going on…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • STUN/TURN Server Reachability

    BeEf
    BeEf
    Hello, our development uses a STUN/TURN Server located in our DMZ. The DMZs have public IP Adresses and they are reachable from the inside networks directly through LAN and Firewall without many restrictions. For the testing setup they want to reach…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • MAC Address Exclusion XG Firewall

    Sophos User6087
    Sophos User6087
    Hi all, Currently in our environment we have a LAN to WAN rule and WAN to LAN rule, which both block traffic from a set country list. For example, we can’t access sites in Russia and any data from Russia can’t access our LAN. At the moment we have…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Helium miner 44158 port forwarding.

    Hau Lin
    Hau Lin
    I'm trying to setup a Helium Miner on my home network and need to direct port 44158 to the miner. Let's say the miner's IP address is 123.45.56.78. How do I specify the miner's IP address in the firewall rules " Destination and services"? I tried using…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS107 inbound SMTP from Barracuda problem

    PeteH
    PeteH
    I have an odd problem with a new XGS107 we have just installed where the customer isn't receiving any inbound email. Outbound and internal is fine. The setup is as below. Its an on prem exchange server. We don't use any email filtering on the Sophos…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Open Port Inbound 44158 for Helium

    wrightcomply
    wrightcomply
    I have my Sophos XG running 18.5.3 MR-3-Build408 bridged to my AT&T fiber gateway BGW210-700 on one of my static IP's (public IP). AT&T claims that all ports are open. I have four LAN Ports on the SOPHOS and have a bobcat miner hotspot connected on Port4…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Port forward in and out 44158 Helium hotspot

    wrightcomply
    wrightcomply
    I’m having difficulty with my new Helium hotspot communicating in and out on 44258. heres troubleshooting from Helium when the hotspot is in Relay. “We recommend enabling TCP Ports 44158 in both directions in your router. Check your Router's manufacturing…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG 18.0.6 Logging of NAT Rules and DNS activity

    Paul McGinnie
    Paul McGinnie
    Running XG 18.0.6 on my own hardware. Short version: How do you log activity of: a) DNAT rule which diverts DNS to the Sophos LAN Port b) The DNS service itself I can do some packet capture, but the logging tool seems to ignore a DNAT rule terminating…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG loopback rule for WAF with "external" URL

    dja
    dja
    Hi, I'm trying to set up the web application firewall for an internal webserver. But the tricky part: I had to use the external URL for this. And that's exactly my problem. The WAF log says: [Tue Apr 05 13:42:19.261160 2022] [proxy:error] [pid 31869…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Loopback Rules Don't Work

    DWS
    DWS
    Hi community, the description of the Server Access Assistant (DNAT) says that all in all four rules should be crated, a DNAT rule, a SNAT rule, a loopback rule and finally a firewall rule. The assistant then, however, does not create the…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • MULTIPLE DNAT NOT WORKING WHEN ONE IS WITH ANY SERVICE

    Armen Asani
    Armen Asani
    Hello All, I have set up multiple DNAT rules for port forwarding with the DNAT Assistant. I want my XBOX to have Any Services and my QNAP storage defined services. However, when I am configuring with such config, then both don't work. If I change…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Trying to decipher Port Forwarding for XG (Home) software - web cams.

    Sophos User5937
    Sophos User5937
    My goal is to have some webcams at home, each using their own dedicated Port number (same port #) through the Internet - Firewall - Switch - camera. (Obviously the switch doesn't care. But my web cams do care. I have posted a copy of my Firewall and…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • DNAT IPv6 or just Firewall

    Bart van der Horst
    Bart van der Horst
    Hi, I've got a /56 ipv6 range from my provider and implemented that range in my local network. First I had to config Snat on the firewall for IPv6 so I could access internet over ipv6, that's working fine now. But I have problems accessing internal…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • WAN TO LAN or WAN TO DMZ CANNOT BE ACCESSED

    Dias Sandika
    Dias Sandika
    I have a sophos xg 330, with the following configuration: 1. Port 1 LAN | 192.168.2.1/24 | gw 192.168.2.1 | static ip | DHCP Server 2. Port 2 WAN 101.102.1.2/24 | gw 101.102.1.1 (mikrotik) | 3. Port 3 DMZ | 172.16.128.6/24 | gw 192.168.6 | I've…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Users on LAN, do not access internally hosted website, through NAT on Sophos Firewall's public IP.

    IvanildoGalvão
    IvanildoGalvão
    Hi guys, please help me with a question. I created a NAT to publish a web server, http port, LAN IP 192.168.0.210, the public IP is the same configured in Sophos XG, 187.77.x.x. Everything works fine, external users can reach the website, the address…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>