So this is basic I'm setting up a firewall rule to allow specific VPN traffic Here's the specific service definition Attempting to setup a VPN, I get this... Here are some of the same drops from the full firewall log Why is this traffic…

Ok, so how specifically do I ' set the corresponding intrusion protection rule to "drop" in WebAdmin ' per the alert email below I received? There is no 'rule' identified in the alert. Am I supposed to infer that 58442 in the snort link is the rule…

Hello all, Networking certainly isn't my forte and I've only really been handling our UTM sporadically for 2 years, so please bear with me. I did not install the UTM nor was I the primary admin, but I want to make sure that we're decently secure. …

We use the 8x8 Work Desktop application. The app employs WebRTC and I'm getting a few hundred thousand default drops for UDP packets going to 8x8 turn servers every 24 hours. The turn server IP addresses (all 8x8 IP addresses for that matter) are in the…

Hi all, Just a small question, what's better? Doing 1 rule including ALL the needed services for ingress egress destination OR doing multiple rules (one per targeted services)? Thanks, Regards, M-

hello all, I am trying to connect remotely to another network using VMware Horizon View (PCoIP) over UDP/TCP port 4172. I have created the firewall rule to allow the traffic to go out the firewall to the remote site, but it is still showing up in the…

I am new to this and just finding my way around setting up utm/firewalls i have a 2 firewall setup an internal sophos utm 9 ffirewall and an external firewall The internal firewall sophos utm 9 is setup where all computers and mobile devices are behind…

HI, I have set NAT an FW to allow bittorrent use port 35951 (TCP/UDP) all looks ok but at live FW log i see lot of DROPs at this port 19:03:28 Default DROP TCP 178.40.178.147 : 50762 → WAN IP : 35951…

Hi, I have a 'MALWARE-OTHER Executable control panel file download request' false positive that I need to put an exception in for. I don't want to exclude the entire rule or detection, just whitelist this host that is triggering the false positive…

Hey all, I'm fairly new to Sophos and firewalls in general (not my forte), and I've been scratching my head over something. Everything is set to pretty much default, plus a few URL filtering and Application Control tweaks, but I'm having trouble with…

I just recently setup the Sophos UTM Home Edition at my house, and left most things as default. I've had to make a few tweaks here and there, but as it stands, I have URL filtering enabled with just a few categories being blocked. That said, my sister…