Sophos UTM Configuration Interfaces External (WAN) 82.x.x.x DMZ 10.0.0.1 /8 Internal (LAN) 192.168.0.1 /24 Network Services - DNS - Global - Allowed Networks DMZ Network LAN Network Forwarders - DNS Forwarders Google DNS…

I have been reading through Rulz and this earlier post trying to get my blackhole/null route working with DNAT since my firewall rules were not (as explained by Rulz). From the latter link, BAlfson said the following is a valid DNAT configuration: …

Hello Friends, I am a new to Sophose, i have sophose UTM9 is installed & company employees are able connect through the Sophose SSL VPN client to Office resource. Am able to ping to SSL VPN client machine & client machine is able to ping my machine…

I am posting this question...and the answer I found...here in this forum in the hopes that it will help others who may encounter the same issues. I'm still new to the world of UTMs, so if I've misstated/misunderstood anything, or any of the experts have…

Hello, on a specific NAT rule, i receive too many requests and i would like to limit that number. Is that something possible? Thank you!

I have the following set up for my home network: A) Incoming Internet (ISP Modem)----> Sophos UTM ----> WiFi Router / \ All wireless devices File Server/Wired connections The Wi-Fi router is in "Access-Point only" (AP) mode, which, as I understand…

I finally got my Sophos UTM Home machine up and running, and so I have several refinement questions I'm struggling with. To help others who may have the same issues, I'm posting them separately rather than all together. This is a security question regarding…

I finally got my Sophos UTM Home machine up and running, and so I have several refinement questions I'm struggling with. To help others who may have the same issue, I'm posting them separately rather than all together. This one deals with the Firewall…

Hi All: I got problem with firewall UDP port 80 and 443. Here is the detail information: Our company network is use sophos firewall. And our company need to use other company application just like chat tools :skype. the application server is open…

I have an SG 310 running 9.414-2 and have run into a strange problem. There are two specific websites that users connected to the guest wireless are unable to access, but users on the wireless bridged to the LAN can access them just fine. There is only…

Hello, We have a SG105 UTM and 3REDs within our network. All clients are connected to the REDs only. We are wondering if there is a way to totally block applications such as Metasploit and Wireshark sniffing from running within our network?

I'm using the software version of Sophos Home UTM on my ESXi server and have three vNICs added. The connections are my WAN/Internal (192.168.1.0/24 router on this network), Lab (10.10.0.0/24), and Lab2 (172.16.1.0/24). If I set a firewall rule to allow…

Hey Guys, Here's the backstory: I recently subscribed to Youtube TV, so as such I've started to use Chrome for watching videos a lot more (Chrome is the only browser Google lets you watch the streaming service on). As such "use a different browser…

Good afternoon Mrs. I need to release all AKAMAI ips range on the firewall, but I can not do that because there are many. Any tips or concerns?

I setup a DMZ on a separate physical interface on a SG330; however, I can still ping hosts on all our internal networks. The only way for me to get this to stop is to disable both "Global ICMP Settings" and "Traceroute Settings" under the Network Protection…

Hello all! O would aprecciate some help from the comunity concerning UTM 9 for home. My setup at home is a ISP internet line with 14MB download and 1MB upload, we have a couple of computers where the kids play, a Apple TV for media streming like netflix…

When visiting nfl.com/draft/2017 and clicking on the Tracker tab packets are being blocked and I receive alerts like the following. Intrusion Prevention Alert An intrusion has been detected. The packet has been dropped automatically. You can toggle…

Question for everyone: I currently have one public IP and have several webservers I would like to access if possible. Is this possible with Sophos UTM, if so how do I do it? I want to be able to access my UTM User Portal from the public using…

Hello, I have a strange issue because i don't understand it really. On the UTM i have created VLAN based interfaces. I have a server in VLAN 100 and a load balancer on VLAN 200. I want the server to be able to contact the load balancer. When i…

Sophos SG135 running UTM9.4 If I do an nslookup of dot.tk using 8.8.8.8 as the server from inside my LAN I get timeouts. From another workstation that is connected directly to the ISP it works fine. All other DNS lookups from inside the LAN work fine…

Hello, I have a strange occurrence. I have activated Intrusion Prevention and I had also the Web protection which for now I have turned off. I have forced every device in my house to go through the UTM9. Even though everything is a bit slower, it…

Hi there, Thanx in advance for helping me understand Sophos UTM firewall/packagefilter a little more. Having kind a hard time to interpret some firewall logs on my utm 9.411-3. Maybe there is something wrong, maybe i am just not getting the concept…

Hello, I am running an application with persistent connections behind a UTM. I am having the issue that when a user disconnects from that application for some reason, the UTM does not send a reset package to the service. Let me give you an example…

Hi all, Can someone look at the log and let me know if this is false positive? What makes me think so: 192.168.2.38 is an iPhone, 10.16.3.160, 10.16.4.22 are both MacBook Pro, 192.168.2.8 is Ubuntu, so none of the devices is actually Windows based?…

EDITED: BLUF, Rulz #2 you will see that the UTM "services" such as Web Proxy, WAF, DNS, DHCP, etc all take precedence over the Network Firewall rules. If you need to restrict devices from using those ports and protocols, you must do 100% of that configuration…