Greetings, we are hosting an internal web app and it requires google FCM services to be opened and working. i have created a DMZ DNAT rule for mentioned FCM ports, but still i am not able to get those notification messages delivered through sophos XG…

I HAVE A WEBSITE ON MY LOCAL SERVER 172.16.1.1 port 80 , and it's working when i try to access it from the internet but only with http ; when i choose https 443 it shows an eeror msg 'this webisite is unsecure click on link to proceed " ; so i brought…

Hello everyone, how do I publish an host or service behind XG thought DDNS? In my case, I have 4 Dyn hostnames and I need to assign a service for each of them and publish them though XG using DYNDNS NATed IP each service has different port, ISP…

I'm migrating to an XGS136 (SFOS 19.5.1 MR-1-Build278). The old firewall published LDAPS on 2 DCs to a specific WAN server that needs to do LDAPS lookups for AD integration. The destination device was set to an FQDN object corresponding to the internal…

Hi All, I am new to Sophos XG coming from pfsense and have to say I will be staying, great NGFW. I have a slight issue though, one which I am sure is simple to solve. I have used the server access assistant (DNAT) to create a port forward rule from…

hi all, got a DNAT like below, blanked the fields out due to privacy do i need to change my inbound interface and outbound interface to the correct ISP as i have two ISPs, so it could be going out wrong ISP, or will it pick the right ISP to go out…

Hi all, I've been having an issue with my Minecraft server I host since switching over to Sophos. The Minecraft server functions normally with DNAT and the server is accessible from outside, except for this error below. Here are my FW/NAT rules…

I need a help. I made a DNAT configuration on our sophos XG 210, to able to access some service on our network but until now, when i try to check if the port is open or not, still closed and service not work externally, using public ip. screenshot…

Good Afternoon, I need some advice on how to best setup my firewall for Github Webhook forwarding to a Jenkins web-server. - My Sophos: SFVH (SFOS 19.5.1 MR-1-Build278) I have tested the following request successfully, in triggering a jenkins…

al crear la regla con el redireccionamiento hacia el puerto de la pagina este no lo realiza correctamente, aparece un error Bad Request Your browser sent a request that this server could not understand. Reason: You're speaking plain HTTP to an SSL…

I need to setup port forwarding to send traffic going to my wan interface on port 444 to an internal server on prt 443, i hav etried every ttorial i can fid on the internet and nothing seems to work. can anyone suggest a tutorial that works and is…

Hallo, die Sophos UTM konnte Zeitserver spielen, die XGS ja nicht, deshalb die Frage. Kann ich eine Portweiterleitung einrichten von allen Ports (außer WAN) Port 123 zu einem im Internet befindlichen Zeitserver oder Zeitserverpool? Gruß Geral…

Dear All, Would like to seek for your help, i have the following firewall rule from Sophos 17.5, i would like to create the same rule in Sophos version 19.5, how do i create it under firewall rule + NAT rules for the following ? any help would be…

By default, the agent's port is 161 and the manager's port is 162, but many internet operators here in Brazil leave this port blocked, which makes it impossible to access the firewall's SNMP. How to change this default port?

Hi Guys, i have a DNAT rule active for our Phone System, but i´d like to make some restriction for some public ip in order to block the traffic before the dnat rule applies. The "exclusion" section in the DNAT rule doesn´t work, someone can give…

Good day Team Using Sophos XG 310 V19 Users are not able to access a service using the SAP business, outside the local area network, using the SAP router. We use code nwbc. We have created a DNAT for the server. we getting the error below

Hi, I work for an MSP and we host client backup data in our data center. I am evaluating switching our Draytek 3900 firewall for a Sophos XGS device. Before we commit to a purchase I am using an XG230 as a test platform to see if it will do what we…

Hello I have searched and can see others have this issue, however none of the solutions have worked for me so far. I have followed the steps at https://docs.sophos.com/nsg/sophos-firewall/19.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/RulesAndPolicies…

Public user are accessing local URL (http://117.x.x.x:3000) successfully, but internal LAN user (192.168.16.10) want to access by public IP , but cant access URL : http ://117.x.x.x:3000, what is the solution,

Hello, This is the "scenario". I have a Vmware network on which a number of servers (Domain controllers, administrative management servers etc.) are virtualized. Connected to this network are physical devices such as clients, printers etc. The…

After updating to v19.5 the back-up to the remote location stopped as this was relying on udp port 1194. Internet: Experiabox (DMZ) --> XGS 126 The settings are given below. Any idea how to solve? --- John

Hi, hoping someone can help. Apologies for the long post. *** This looks like a repost from another user but for some reason when I logged in to the community recently it set up a new account for me. I am the OP of this thread** ALSO, Although in…

Hi I have a firewall who is behind an ISP router The wan port is connected directly to my ISP router via PORT 2 and i've assigned to it a private IP@ Now when deploying RED devices , the support asked me to give the Port 2 a public IP@ , wish i don…

Hello, i was trying to open the PORTS to all Internal users, but the rule still blocking the access. please verify that am doing port forws correct way for all internal users. Thanks

Hi, I am trying to create rule on firewall so camera monitoring company can check our cameras from outside. I need help to setup this firewall rule. Thanks