This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Block Traffic for Userportal, Webadmin, SMTP to specific Sophos additional address

Hello,

Sophos Services (Webadmin, Userportal, SMTP and so on) are on every Sophos IP address.

But i need to disable or block every of thiis Services to spacific additional address.

I try to create a Firewallrule and a NAT Sinkhole, but booth doesn't work.

How can i reach this goal?

E.g. my external address is 1.2.3.4 and an additional address is 1.2.3.5, i want to reach Webadmin, Userportal and SMTP Protection on 1.2.3.4, but not on 1.2.3.5

Sophos UTM virtual Appliance with 9.711-5 Firmware.

Thanks for your help.



This thread was automatically locked due to age.
Parents Reply Children
  • Ah, an internal device.  There are several ways that might succeed, Michael.  One would be that the user was authenticated as the log indicates.

    Another would be that the test device is using something other than SMTP, so try using the "Email Messaging" Service Group instead of "SMTP" in the DNAT.

    A better test would be to use an external test like https://mxtoolbox.com/diagnostic.aspx.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • thx for the troubble i caused Slight smile

    I took another physical interface, excluded it from SMTP (meaning: i did not put it in the allowed interfaces list) and moved the additionel IP addresse to the new interface. This may not be an option for everybody, but it worked for me pretty well.