• Sophos UTM, Network Protections, Rules -- Order does not count???

    Does the order of Sophos UTM "Network Protection" firewall rules matter at all?!?!?! On my sophos utm, the "Network Protection" firewall rules are as follows (summarizing) Top Rule = deny PrivateIP#1... any protocol... to any external ip (block…

  • Access Internal website hosted in the windows server externally

    Hello, We have created a website that is hosted internally and can be accessible. But we want that website to be accessible on the internet without VPN. (I can access it with VPN) I created a DNAT rule to allow any traffic from outside to that server…

  • Sophos UTM9 NAT Method

    Hi everyone, im thinking about buying a Sophos UTM9 Appliance and i wanted to know which method of nat it is using (Full-Cone, Symmetric, Restricted-Cone or Port-Restricted Cone). Sadly I didnt find any information on this topic. Can someone tell…

  • ATP Alert Generated for DNS Lookup of hosts specified in UTM Block Rule.

    I run Sophos UTM 9.705-3 pointing in to an Internal Sink Hole DNS Server. The first rule of my UTM blocks https to a large number of DNS over HTTPS Servers, one of those DOH Servers is commons[.]host. As of 00:08 Hrs this morning I am now getting…

  • Email is leaving the incorrect interface, despite NAT rules in place.

    Hello all, I'm seeing a lot of bounces on the mail manager, and I'm hoping you can help me narrow down the cause. I've got 3 WAN interfaces and a bunch of extra public IP addresses assigned to them. x.x.x.83 is the default ip address of WAN-X2 and the…

  • Exclude IOT devices from https decrypt and scan

    Hi, I have followed the following steps so far: created static mappings for all the devices in my house: computers, tablets, phones, raspberry pi, IOTs like Google Home, smart tv, smart dvd player, smart irrigation system, thermostat, etc. Created…

  • IPS blocking VoIP Packet

    We recently discovered that our UTM was blocking packets that we needed for VoIP. RTP packets were being discarded because IPS detected a UDP Flood Attack. The issue was difficult to find because the UTM was only discarding a relativly small number…

  • Alert in Network Protection with ATP - C2/Generic-A mrdistrupd.com

    Hello, First, sorry for my english, you know french guys don't speaks correctly english x) .... I have an alert on Sophos UTM 9 in network protection Advanced threat protection : ip source : (my server DNS) adresse ip de destination : mrdistrupd…

  • Replacing TMG with a Sophos UTM SG210.

    Hi all, I'm trying to replace my old TMG with my SG210, the problem is when I create a new rule, it doesn't work. I noticed that my LAN can't access internet even with the firewall rule "Any-Any-Any" so I had to create a NAT rule to make this happen…

  • Limit IP conenction per second

    How i can limit ip connection per second , my server game has attacked DDROS and UDP from ipstresser.com . Thanks you
Unfiltered HTML