Hi all
Apologising for posting this - I've been using and deploying UTMs for years now and started learning XG as one day we all know the UTM will one day be laid to rest.
However, I'm totally stumped on this really simple training setup I've built and hoping to get some friendly pointers
So I have 1 webserver its on port3
I want to say any http and https traffic externally, only 1 external IP, be translated through to that web server
I followed this guide docs.sophos.com/.../CreatingDNATRuleWebServer.html
I've setup the NAT and firewall rule to support this but it doesnt work. I've looked at the firewall rule but not seeing any traffic hitting it because requesting it.
NAT RULE
Original source - ANY
Original dest - the external IP of the web server
Original ser - HTTPS
SNAT - original
DNAT - The internal IP of the webserver
PAT - Original
Inbound and Outbound interface - ANY
Repeated the above for HTTP so there are 2 NAT rules
I then created one firewall rule
Action Accept
Rule group: Traffic to DMZ
Source Zone WAN
Source networks and devices ANY
Destination Zone: DMZ
Desitnation network: the external IP to the web server
Services: HTTP and HTTPS
I do only have one static IP on this connection so im wondering if its conflicting with SSL VPN service? However, I would have thought I'd get the HTTP at least but simply nothing.
This thread was automatically locked due to age.
