This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Best way to kill access to mgmt portal

I have the mgmt for Sophos on its own interface and would like to know the best way to cut off mgmt portal access on multiple vlans at once.  I am thinking some rule to block access to port 4444 across vlans?



This thread was automatically locked due to age.
  • Hi Steve,

    you wil also need to block ssh access. Though there is a possible trap that you haven’t left yourself a backdoor in case your port fails, so I suggest you setup a free cm account to provide emergency access.

    ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

  • Bascially the "Device Access" Part is to allow traffic to XG. Look at Administration - Device Access. 

    You can either allow HTTPS/SSH for your MGMT Port or you can untick all boxes and create a Local ACL Exception rule and allow the IPs. 

    Or you disable this for everything and use only Central (In case of a WAN lost, not the best case). 

    __________________________________________________________________________________________________________________