Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 632 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SOPHOS BACKUP GATEWAY

Ihenock

HI All

I configure Sophos XG firewall secondary gateway and I enable failover when the active fails to take over however I couldn't access the sites I publish from outside my network. what I should do in order to work?

Thanks



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to the Community! 

    Could you provide more detail about the sites you're trying to access from the external network? How did you publish these sites? Using WAF or DNAT rules?

    Do you see traffic from the external public IP on the firewall while accessing the sites? 

    Thanks,

Reply
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to the Community! 

    Could you provide more detail about the sites you're trying to access from the external network? How did you publish these sites? Using WAF or DNAT rules?

    Do you see traffic from the external public IP on the firewall while accessing the sites? 

    Thanks,

Children
  • 0 in reply to FormerMember

    I used the DNAT rule it works with the primary Gateway i can access the internal resources however using the backup gateway it is not working 

  • 0 in reply to Ihenock

    Just to clarify: You published services at your internal sites over DNAT to external world, right?
    Are you accessing this services via FQDN from outside your network? Just keep in mind, that your ip is not reachable at the time it fails over to backup gateway and so your A-Record for this fqdn will not be reachable until you switch your a record to the backup external ip.

    I am not sure i got your setup tho...