This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos RED PCI Compliance

Can I have my REDs connect to an alias rather that the primary interface address?

I'm failing a PCI compliance scan and some of the REDs I have are on dynamic service. That said, the port 3400 black hole rule will probably come back to haunt me.

I'm only failing the scan on my primary interface and was hoping to just move the REDs onto another WAN IP further down my range.

This thread was automatically locked due to age.

Parents

0 emmosophos over 4 years ago

Hello Gary,

Thank you for contacting the Sophos Community!

You'd be able to connect the RED using an Alias interface, I haven't try.

You can confirm by using the command below for red ports

netstat -nap

0.0.0.0 should mean all interfaces including alias.

Regards,
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 emmosophos over 4 years ago

Hello Gary,

Thank you for contacting the Sophos Community!

You'd be able to connect the RED using an Alias interface, I haven't try.

You can confirm by using the command below for red ports

netstat -nap

0.0.0.0 should mean all interfaces including alias.

Regards,
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data