Hello volks, yesterday I stumbled over a weird new issue. It seems that our NAT masquerading rules are not applied when traffic matches a policy or multipath route (in interface mode). So I tried a traceroute with a port so the trace would match the…

Hi guys, I’m trying to NAT (or DNAT) Single WAN with multiple ports to Internal LAN IPs. Just wondering what’s the best way to do it. Example: WAN 40.12.34.56:1000 to 192.168.1.5 WAN 40.12.34.56:2000 to 192.168.1.6 WAN 40.12.34.56:3000 to 192…

I feel like I'm doing everything right... but something's not working. We have a DevOps Server which provides SSH access for GIT operations. I've created a DNAT rule for it: from InternetV4 -> SSH -> External IP to change the destination to the DevOps…

I have a File server name Synology, it has option to share files to external users, i tired to share the files but remote users not able to access it, i have two Firewall in my Domain, one UTM version 9.711-5 another XG. On XG i just created DNAT…

Hello, I am new to the forum and have a question directly to the experts here. We use a Sophos SG230 UTM 9. I would like to establish an external OpenVPN connection from my computer, which is behind the Sophos, to another network. Unfortunately the…

Hello everyone! we have a newly deployed Remote Desktop Gateway Server (on Windows Server 2019) installed in our environment and I was successfully able to publish it through our UTM 9 WAF. Unfortunately, by doing this I am only able to get RPC-HTTP…

Hi everyone, im thinking about buying a Sophos UTM9 Appliance and i wanted to know which method of nat it is using (Full-Cone, Symmetric, Restricted-Cone or Port-Restricted Cone). Sadly I didnt find any information on this topic. Can someone tell…

I have two WANs in uplink balancing and normally one of them is in active interfaces (e.g. WAN1) and the other is in standby (e.g. WAN2). Sometimes I want to let one of our internal endpoints to connect to the internet via WAN2 so: 1. I move the WAN2…

Hi, I want to open port 3579 on my UTM so I can use this custom port remote-ing into my PC at home. The reason why I want the special port created is because I know it's never a good idea to have port 3389 open on your public IP. I set up the DNAT rule…

Hi, We need to publish a new mail server for a new domain, but we want to publish it with it's own public ip. The story :) We have Sophos UTM to manage mail protection for our principal domain, let say example.com The public ip for the UTM is…

Hello , i have 2 servers 1 hp dl360g5 with 2 utp ports 1 is lan 1 wan this is my utm v9 and one dell r610 witch has 4 port 3 not connected 1 conected directly to the hps lan utp port. Configuration is as follows The UTM has 2 port port 1 is the…

Hello, Traefik is a Docker-aware reverse proxy and i want to use it for my dmz sites, some of then in docker container and other deployed "normaly" like Outlook Web Access (OWA), so i need to set up a reverse proxy and expose ports 80 and 443 and i…

I have a UTM 9.5 in the cloud. I connect to it with a L2TP over IPsec connection. I establish the connetion and visit some site to check my IP and it shows the IP of my UTM. If I drop the L2TP over IPsec connection and refresh it shows my work IP. So…

Good Morning, i have cluster UTM SG310 with firmware version 9.509-3 WAN IP IS: 1.2.3.4 Additional Address: 1.2.3.5 Internal LAN: 192.168.0.100 MPLS Gateway: 192.168.0.15 Web Server: 192.168.5.19 (Under MPLS) Static Routing configured on…

Hello all, I'm seeing a lot of bounces on the mail manager, and I'm hoping you can help me narrow down the cause. I've got 3 WAN interfaces and a bunch of extra public IP addresses assigned to them. x.x.x.83 is the default ip address of WAN-X2 and the…

Hi to all, I use standard device who is doing NAT, if i replace this device by Sophos UTM, does i still have NAT function if i replace it with Sophos UTM Home Ed. ? Does Sophos UTM integrate NAT function and Firewall ? Does it is mandatory to keep…

Hi all: I have implemented a Mikrotik RB2011 series router/firewall that works great with the exception that I have realized the Mikrotik firewall is very lacking compared to the UTM firewall that was on the old Fortinet router/firewall. I'm thinking…

Morning All! Just installed a new Panasonic NS700 phone system at the Office. It's working perfectly here onsite but I have a handset at home that is connecting to the external IP I have setup for the PABX, downloading all its settings etc I can log in…

Sophos UTM Configuration Interfaces External (WAN) 82.x.x.x DMZ 10.0.0.1 /8 Internal (LAN) 192.168.0.1 /24 Network Services - DNS - Global - Allowed Networks DMZ Network LAN Network Forwarders - DNS Forwarders Google DNS…

Hello! We have an AWS VPC setup with one private subnet only and hardware VPN access ( scenario 4 ). The private subnet contains one Windows EC2 instance which we connect to using SG105 UTM through RDP. Everything works fine and we are able to connect…

Hello, We have a VPC scenario 4 ( private subnet only with hardware VPN access ) implemented on AWS with one Windows EC2 instance in the private subnet. We are using SG105 UTM as the customer gateway. Currently, we RDP into our instance using VPN which…

Hello, on a specific NAT rule, i receive too many requests and i would like to limit that number. Is that something possible? Thank you!

I am having a very strange problem with a 3rd party app communicating through my Sophos if they are coming through an IPsec tunnel. I don't know if this belongs in the IPsec discussion group, the web filtering group, or here because it includes parts…

Hello, I'm trying to set up FileZilla Server on a server and I'm running into an issue. Everything works fine internally, but when I try and access the site externally, I am able to log in but directory listing fails. I an only imagine I'm missing…

We have a phone server on the internal network that is configured to accept inbound connections on a particular external IP. Apparently this server is restricted to only accept connections from 1 external IP at any given time. As we are migrating to…