Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 4 subscribers
  • Views 4240 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

User Portal Blocks Internal Address But Allows Any?

TitanRob16

Hi all,

I've had a request from management to block our UTM portal page to the outside world for security reasons, and instead only allow people on our internal network to access it. 

I've therefore gone into Management - User Portal - I've removed 'Any Network' from the access list, and have put in a custom network group (let's called it Internal UK). The IP listed in this group is 10.1.0.0 and the subnet mask is 255.255.248.0, therefore providing a range of 10.1.0.1-10.1.7.254. My current IP is 10.1.4.2. I press Apply and try connecting to the portal page, but I can't access it. Yet, when I remove the custom network group and allow any network to connect to the user portal page, it obviously lets me through. 

I've run ipconfig and don't have any other IP addresses. Can anyone think why this is happening? 

Any help would be appreciated :) 



This thread was automatically locked due to age.
Parents
  • 0

    What do you see in the firewall log, Rob?

    Alone among the logs, the Firewall Live Log presents abbreviated information in a format easier to read quickly.  Usually, you can't troubleshoot without looking at the corresponding line from the full Firewall log file.  Please post one line corresponding to the issue you observe in the Live Log.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    I figured it out - it was an error on my part. I needed to configure the listening port on the UTM to listen on the internal network - not the external network. 

    Thanks for the help :) 

  • 0 in reply to TitanRob16

    You can (if you want to allow this) also set this to any so the userportal is reachable from both internal and external. Of course using only internal is more safe....

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Reply
  • 0 in reply to TitanRob16

    You can (if you want to allow this) also set this to any so the userportal is reachable from both internal and external. Of course using only internal is more safe....

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Children
No Data
Unfiltered HTML