Sophos SG135 WAN side firewall configuration

I have revisited my firewall configuration and have a problem. I have found that the destination for internet bound traffic on a subnet had been set to all rather than WAN.

This didn't look right so I set the destination for External (WAN) (Network) and promptly broke my connection.

The primary WAN connection is the Sophos box connection. I do have a secondary failover connection but this has a very much lower bandwidth and turning it off does not make any difference.

Please could somebody suggest where I am going wrong and help me sort this out.

Regards,

Budge.

Top Replies

Vivek Jagad 3 hours ago in reply to Budgie2 +1 verified

Request to mark this as resolved and start another Budgie2

Parents

0 Budgie2 6 hours ago

Hi Vivek, Many thanks for the answer but I am not clear why ths is the right solution. Please can you explain why I cannot use the WAN (Network) connection which seems more logical.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Vivek Jagad 6 hours ago in reply to Budgie2

Hi Budgie2External WAN network is your external IP network for the Sophos UTM, if it was your edge firewall this would be the address range from your ISP. Where as network -> any (or whichever service you want) -> Internet IPv4

Thanks & Regards,
_______________________________________________________________

Vivek Jagad | Team Lead, Global Support & Services

Log a Support Case | Sophos Service Guide
Best Practices – Support Case

Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Reject Answer

Cancel
0 Budgie2 3 hours ago in reply to Vivek Jagad

Hi Vivek and very many thanks. I understand now. As I have it set up all my subnets are configured from the WebAdmin on the UTM. I have each subnet with a static ip from within a defined range of addresses not relased for dhcp but they use the ip address of the subnet for the gateway and the UTM dhcp for connection to the WAN so from what you say I have it right. Many thanks.

So far so good but I have a much bigger problem on which I need help. Should I continue on this thread or start another?
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 Budgie2 3 hours ago in reply to Vivek Jagad

Hi Vivek and very many thanks. I understand now. As I have it set up all my subnets are configured from the WebAdmin on the UTM. I have each subnet with a static ip from within a defined range of addresses not relased for dhcp but they use the ip address of the subnet for the gateway and the UTM dhcp for connection to the WAN so from what you say I have it right. Many thanks.

So far so good but I have a much bigger problem on which I need help. Should I continue on this thread or start another?
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

+1 Vivek Jagad 3 hours ago in reply to Budgie2

Request to mark this as resolved and start another Budgie2

Thanks & Regards,
_______________________________________________________________

Vivek Jagad | Team Lead, Global Support & Services

Log a Support Case | Sophos Service Guide
Best Practices – Support Case

Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up +1 Vote Down

Sign in to reply

Reject Answer

Cancel