Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 1499 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

can't open sophos XG page while i connect by RDP

mohamed elkhateib

hello

i can connect to pc via rdp and can ping my XG but can't open the page so i think i missed to make a rule for that so any idea to add rule or open the XG page ?

all what i can do now is ping my xg address and also i can open it by putty (but i don't know any commands ) 



This thread was automatically locked due to age.
  • 0

    Please be more thorough with your setup.

    Is it the first configuration of the XG?

    From where and to where are you connecting via RDP? And why are you connecting via RDP?

    If you're on the LAN you should connect to the web page directly(unless you changed the settings)

    If you're from WAN you should've already enabled that prior to accessing.

    To do that, you have to connect to the same LAN as the XG and go to Administration - Device access and tick LAN and WAN on https. Be carefull though, enabling https on WAN, enables other to access the page too! I would enable only LAN and VPN and connect via SSLVPN to the XG.

     

    Otherwise, what you're asking is done this way:

    On putty, when you connect to it, select 4(console)

    Type this:

    system appliance_access enable 

    Press enter and you should have enabled the access. Then go to the web page and to Administration - Device access and tick the https boxes corresponding to the interfaces you want. When you're done, go back to putty, type 4 for the console and type:

    system appliance_access disable

    You should be done.

  • 0 in reply to Panagiotis Vakerlis

    at first thanks for reply 

    and about my case 

    *Is it the first configuration of the XG? 

     ( no )

    *From where and to where are you connecting via RDP? 

    ( i'm a way of the XG and some time i need to access pc on lan so i make a rule to open rdp to pc and i can connect to this pc while it also can connect to XG as it a part of lan there )

    *If you're on the LAN you should connect to the web page directly(unless you changed the settings) 

    (yes i changed the setting but in fact i can't remember the rule what it was )

    *If you're from WAN you should've already enabled that prior to accessing.

    (yes i'm also trying to connect to XG via wan but i can't !!!)

    and finally i try to write in console (system appliance_access enable ) and still got this MSG. (Connection closed by remote server) so still can't connect 

     

    so all what i want is how i can open the admin page what ever via wan or while connected via rdp to pc in lan to able to add or remove rule as i can't go to XG place .

     

     

     

  • +2 in reply to mohamed elkhateib

    Well, if all these failed, connect a monitor and keyboard to XG and connect to console(the menu is the same as with putth(ssh) and redo the steps with the commands I gave you previously

     

    It's weird though, I just tried the command and could access the web page from WAN

    Let's do it again:

    Find out what the public ip is on the XG

    Connect RDP to the computer. Open putty. Connect to Sfos. Press 4 to enter device console. type system appliance_access enable. You will probably disconnect from RDP as this command disables internet access as long as it's enabled.

    Now from your computer(not the RDP) you can connect to the web page as following: https://XXX.XXX.XXX.XXX:4444

    Connect with your password and go to Administration- Device access.

    Check the boxes you need under HTTPS (eg. LAN,WAN) and save. Press on the top right corner the admin name, click console. On the new page press enter and type yout password. Type 4 for device console 

    Type system appliance_access disable

     

    All should be good now