Sophos SG 125
UTM 9.601-5
Hello @ all,
since we have a new ISP (fiber optic) some websites (JIRA/Confluence i.e. ...atlassian.net) and ssh to our bitbucket.org repo (also atlassian owned) is not working anymore.
All other websites and ssh to other servers are working. This is the behavior if the webfilter is off.
If i turn webfilter on in transparent mode the websites are working but the ssh to our bitbucket repo still do not work.
When my notebook is connected directly to the ISP Router with the static IP or if i enable the old ISP connection in the sophos all is working fine (websites and ssh to bitbucket).
That tells me the problem is caused by the Sophos and isn't IP whitelist or new ISP related.
I don't have any other stuff like DNAT/SNAT (only masquerading for internet access) or IPS enabled.
One and only FW rule is: Internal (Network) -> Any -> Any (Allowed)
What i already did:
- Checked FW logs and livelog
(nothing gets blocked as far as i can see and it would not make sense since our one and only FW rule + because its working with the other (old ISP) connection its working)
- Checked DNS resolution / Changed DNS Forwarder / Clear DNS Cache
- Tried other MTUs
So it's a kind of minimal configuration and still this problem exist. I don't know where to look / what to try more here.
For me it seems like some bug or glitch at this point but maybe someone with more experience have a suggestion for me.
Edit: Picture of wget to see at which point it stops
This thread was automatically locked due to age.