Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 10 replies
  • Subscribers 28 subscribers
  • Views 1109 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

WAF Inspection

Regex

Hello Community. 

Is there any information that Sophos XG appliance is inspecting traffic between Sophos ----> Server     ?

Simple scenerio:

[WAN INTERNET] --------> (SophosXG_WAF Rule) -------> "Synology Server with a few services on non standard ports"

Synology has Configured to use only HTTPS traffic.  AT Sophos XG I do have configured Certificate for these WAF rules, but for example;

I cant see any logs for rule #32 - as on screenshot. 

Rule #31 - logs are available

Other rules - Nope, log section is showing "N/A"

My goal is to be sure that Sophos is inspecting all what is trying to pass to DST server ;)

 Thank you for you help.



This thread was automatically locked due to age.
Parents
  • 0

    As there is no NAT-Rule allowing this traffic (i think/hope there is so) all inbound traffic has to use your WAF-Rules to reach the DST-Server.

    As you can see the traffic within logviewer/WAF ... this is so.

    But there are options to configure WAF without protection ... you have to configure and use "good" WAF-policies.

  • 0 in reply to dirkkotte

    Im not sure what you are trying exolain saying "As there is no nat rule" well, configuring WAF NAT must be made by design? To be clear i can reach all 3  ports. But only One is shown amin logs  and also i think that there is no protection. Ive been testing it. 

Reply
  • 0 in reply to dirkkotte

    Im not sure what you are trying exolain saying "As there is no nat rule" well, configuring WAF NAT must be made by design? To be clear i can reach all 3  ports. But only One is shown amin logs  and also i think that there is no protection. Ive been testing it. 

Children