XG Inbound DNAT Rule Working Fine But XG Blocking Server Outbound

Question

Hi all, 
 We're fairly new to Sophos XG but we have our firewall rules set up and working so far. However, I have created a DNAT rule for secure LDAP which is working well and I can see the traffic being forwarded to the internal server. However, the response from the server is not reaching the destination. 
 I know the XG is the problem because if I change the default gateway on the server to the old firewall it works fine. The DNAT rule is reflexsive so I would have thought the XG being a stateful firewall would allow the outbound traffic from the server but this is not the case. 
 Do I need to create a user / network rule for the server for the outbound traffic? 
 Thanks in advance. 
 Lee

rfcat_vk · Accepted Answer

Hi, 
 the outbound traffic has nothing to do with the inbound traffic, so the stateful function would ignore post a failed connection. 
 You will need to create a rule, probably network source any -> your server name (FQDN maybe) -> WAN -> any -> services you wish the server to connect to, you should be selective and not use 'any'. 
 Ian