Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 2 subscribers
  • Views 5172 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[9.102][BUG]DNAT creates Network Definition

Laue
Hi,

i have created a DNAT Rule (like Szenario 2 : How to Port Forward Service Ports with NAT: Astaro Security Gateway)

After Rule creatation a Service Definition will be created and after each on/off of DNAT rule it will be re-created...

I use UTM 9.1 latest Patch Level.

Any hints? It's very annoying to delete wasted stuff...




This thread was automatically locked due to age.
  • 0
    ...not fixed at 9.102-8 -- any hints? can anyone report it to sophos?
  • 0 in reply to ipzipzap
    What is more annoying is that it creates this even when you use an existing definition. If you rename it a new one is created.
    Definition table full of junk.

    Not very good.

    ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0
    This, apparently, is fixed in 9.103.  I just upgraded our V8 to V9.103-5, and toggling a DNAT created no new firewall rules.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to rfcat_vk

    Definition table full of junk.


    Yes, same probleme here!
    Is there a open call to this issue?

    Nice greetings
  • 0 in reply to BAlfson
    This, apparently, is fixed in 9.103.  I just upgraded our V8 to V9.103-5, and toggling a DNAT created no new firewall rules.


    I updated to 9.103-5 yesterday, disabled my NAT-rules and checked the service definitions... they were gone.

    Re-enabled my NAT-rules and checked the service definitions again... and they are back :-(





    So unfortunately no fix for that bug yet.

    :-(
  • 0
    Guys, I reran my tests just to confirm, and I don't see the problem.  I loaded from the 9.006-5 ISO, restored the 8.310 backup and Up2Dated to 9.103-5.  I wonder if there wasn't something earlier in V9 that's being dragged along...

    What if you restore a backup from V8.3 - do you see the same behavior?  From 9.006-5? Etc.?  That's easier than a reinstall with the path I took.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Hi Bob,
    my config has been used in many betas with changes to add additional functionality. The current UTM was built from  recent iso and a number of updates.

    I checked the disabling and enabling of DNAT rules and did not appear to get any new definitions.
    A further test will be when I try to delete one of the existing definitions, because according to i button both definitions are in use on the same dnat rule.

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0
    I reported this in beta 9.1 Importing 9.0 backup
    One week before I installed from ISO 9.104-17, a fresh Install without backup and any rules from beginning! It is definitely a bug

    https://community.sophos.com/products/unified-threat-management/astaroorg/f/80/t/64948
  • 0
    9.106-17 with a new 320 box we set up, fresh config with settings manually input.

    DNAT rules would create tons of services/rules despite existing ones being selected during DNAT setup.
Unfiltered HTML