Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 1846 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG WAF AND NAT

Mamud Alkali

SENERIO 1
Hi, I'm trying to set WAF on a web server on DMZ and I noticed that after configuring WAF rule, external users are able to access the web sever without creating a firewall rule from WAN to DMZ and also without configuring NAT rule.


SENERIO 2
I also noticed when (NAT and firewall rule is set up using DNAT(server Assistant))and WAF rule is also configured that WAF does not work for external users but it works for users on the LAN .


SENERIO 3
I also noticed that when the firewall rule for WAN to DMZ is configured, WAF is configured without NAT the WAF Works fine for External users


SENERIO 4
I also noticed that when the firewall rule for WAN to DMZ is configured, WAF is configured with NAT, The WAF does not work for External users but it works for users on the LAN



This thread was automatically locked due to age.
Parents
  • 0

    Hello Mamud,

    Thank you for contacting the Sophos Community!

    If you are using v18, when you configure WAF it configures the Firewall rule.

    Make sure the ports are not overlapping when using WAF and DNAT.

    I would suggest you take screenshots of your configurations and share them with us!

    Regards,

Reply
  • 0

    Hello Mamud,

    Thank you for contacting the Sophos Community!

    If you are using v18, when you configure WAF it configures the Firewall rule.

    Make sure the ports are not overlapping when using WAF and DNAT.

    I would suggest you take screenshots of your configurations and share them with us!

    Regards,

Children