Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 16 replies
  • Subscribers 28 subscribers
  • Views 1067 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Not able to access XG using wan port deployed on VMWARE(ESXI6.7)

Ashish Kumar Jha

Hi All,

I have deployed Sophos XG firewall on VMWARE ESXI 6.7 and I am not able to access using WAN IP of XG.

Also I am not able to route traffic to firewall.

Please provide solution as early as possible.



This thread was automatically locked due to age.
  • 0 in reply to Ashish Kumar Jha

    Then you should start to tcpdump the outgoing packets and see, what is happening on this End. 

    as you can perform tcpdumps, you can verify, if the vswitch is causing the problem or XG. Likely its a vSwitch configuration issue. 

    __________________________________________________________________________________________________________________

  • 0 in reply to Ashish Kumar Jha

    Are PortA and PortB that are now conifugred as LAN and WAN most likely also on the right vSwitch config in ESXi? You should in ESXi also have 2 vSwitches; 1 for LAN where also your local computers should connect to and 1 for WAN that connects to your internet side.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

  • 0 in reply to apijnappels

    Where I am trying to deploy Sophos XG that is a cloud service provider in US name TierPoint and there are several other customer VM's also. They have given us one "organization VDC" and that VDC has 4 VLAN's. So I used one VLAN for LAN and other VLAN for WAN. Please let me know is this correct configuration or not ?

  • 0 in reply to Ashish Kumar Jha

    This can work, but all the factors need to be setup correctly.

    You should start investigating with Sophos Support, if you cannot follow up with tcpdump on your setup. 

    __________________________________________________________________________________________________________________

  • 0 in reply to apijnappels

    Yes, like that only I setup but problem is I am unable to route other VM traffic to Sophos Firewall.

  • 0 in reply to Ashish Kumar Jha

    Then you should get in touch with this provider, what they actually do with this traffic. 

    Could be a VLAN issue within the network. Or it is a SD-Network solution, which does not work like usual with default gateways etc. 

    __________________________________________________________________________________________________________________