Hello Team. I recently deployed a sophos xgs 3300 firewall. I am very green in regards to the firewall but I have managed to set it up and get the LAN and remote sites to access the network services. The challenge I am facing is making my public servers…

Dear Team, How to configure NVR rule on firewall. So that I can access the cameras through static IP from anywhere. Regards, Satpal.

Hi all, We are having a few problems with our VOIP phones. I believe it may be to the firewall, but I not 100% sure. I need to allow an IP address range and some ports. I have created a firewall rule, but I cannot see that any traffic being logged…

Hello everyone, I am attempting to redirect all requests made to 192.168.10.5 to 172.16.10.5. The VPN is working properly on both sides. Sophos XGS: DNAT Through Routed VPN Details: #VPN Working 100% LOCAL-LAN: 192.168.10.0/24 (Sophos) REMOTE…

Hi Sophos Geeks! I'm having a problem accessing my WEB Application using Public IP in my local network but working if I'm accessing it externally. I already configured the DNAT policy Source zone in Any Zone but still no lock. Currently my version…

Hello, I would like to create a DNAT and PAT rule for a customer. However, this doesn't quite work the way I want it to. When saving, I always get the message ‘Original and translated services do not match’. Normally I would also like to use port…

Dear tEam, I cannot allow traffic from an external ip and a specific port to my local server. I tried differents things but it doesn't work.

have created a new alias port (Port 5:0) on our Sophos XG 210 (SFOS 20.0.2 MR-2-Build378) and created a local host at internal IP of 10.0.0.71). I have also created a firewall rule to allow access to this host from several specified remote hosts that…

hi, we have webserver in LAN zone that server access through private IP address IN LAN zone. issue-Right now user in china and access webserver through Vpn but in china vpn not connected only indian sim with roaming will work.how to access webserver…

This was working a month or so ago, but the vendor has just now tried it again and it isn't working. The error is Violation Local_ACL.

Hi guys, I'm trying to create a DNAT rule that uses the ISP from Firewall A for a host that is on Firewall B. The communication between these firewalls is done via SDWAN VPN When testing the NAT, I identified in the packet capture that the traffic is…

My Sophos FW XGS2300 port forwording not working for a new port in the past 7days ago, the older port forwording still work normal. Please help me how to check and troubleshoot about this problem. My NAT and rule as pic below. Many thanks for support…

Hello Everyone, I am having a little configuration issue with my web server on a VLAN. All my VLANs have internet access but I can't seem to access my web server from outside my network. Can anyone post an example firewall rule from Public IP to VLAN…

Dear community, As a firewall noob I am wondering how to integrate a dynamically changing list of IPs into an allowlist for a specific firewall rule. As a home user I unfortunately have no access to the "Web protection subscription", only "Base Firewall…

Sophos XGS 2300 running 20.0.1 Internal exchange server DNAT rule allowing passthru of SMTP traffic to the exchange server. ports 25,465,587. From time to time we stop receiving email. to fix, we reboot the sophos firewall. When it stops working…

We recently replaced all our xg230 with xgs 2300 firewalls. Geovision Video server is on a dmz with port forward rule and NAT rule. Remote playback and viewlog you can't connect to them. Live view works fine. Other sites no issues. Firewalls are setup…

Hi, we have suddenly a strange problem. We have an XGS136. We have two internal servers that need to be accessed from outside and the DNAT & NAT rules have been created accordingly. All the rules ( dnat, loopback, reflexive ) for the two servers are…

Hello, I'm reconfiguring my fw (latest OS version), changing the zone and IP of my reverse proxy, from LAN to DMZ. Externally I'm able to reach my web sites with the RP on LAN, but if I change the zone and internal IP in firewall rule and NAT rules…

Good morning, I currently have a server in an on-premise datacenter that responds to TCP port 12233. So there is a very normal DNAT on the XGS firewall of the public ip 80.80.80.80:12233 towards the private server ip 192.168.1.10:12233 This service is…

hello , i'll try a simple port forwarding when i setup this like below , it works when i change the source port to 7887 then it dont forward. why o why ?

I believe I have everything right but I cannot see traffic in the firewall logs and I cannot get remote access to ether media server. NAT Rule : Port 2 is WAN, Port 1 is LAN, Synology is a local IP Any Suggestions? I already called my ISP and they…

Hello, I am using XGS2300 Version 20 When users are on LAN, they cannot access servers on the same network while using their public IP, they can only access the server over the public IP when they move out of the network. How do I solve that

Port forwarding rule I have an external ip address (PortB:8) currently used for a production website on port 443. I would like to be able to access a test web server via the same public IP via port 65443 and translate to port 443 at the server.…

Hi all, # XG330 I have a project to set up an SFTP server to transfer data securely from a remote station to the SFTP server located in the DMZ.(Head Ofice) the server is installed, configured and integrated into the dmz. the remote client uses an…