Guest User!
You are not Sophos Staff.
Hi everyone,
This is the ACL matrix of Sophos XG v18 firewall system.
Would you please explain to me in more details about the rows and columns of this ? I would like to know more in partiular about the SSL VPN column :
Thank you very much in advance.
Just 2 more questions. Despite having unchecked all services available on the WAN row, why are there still signals from strange foreign IP addresses trying to contact my XG Firewall at different port numbers, to which it has denied ?
Also, in the log viewer, how may I view the traffic connections that have been allowed by the firewall system ?
Thank you in advance.
Just 2 more questions. Despite having unchecked all services available on the WAN row, why are there still signals from strange foreign IP addresses trying to contact my XG Firewall at different port numbers, to which it has denied ?
Also, in the log viewer, how may I view the traffic connections that have been allowed by the firewall system ?
Thank you in advance.
Hi J Thai: The Packets will reach XG as IP is publicly routable but the intended destination service is not on or not configured ON XG due to that firewall will drop the same with denied action with invalid traffic. If you do not want traffic should not reach to XG then on (next hop device) possible ISP router on your premise - you may block those destination and that will not forward those specific destination traffic on XG
To see allow traffic/connection, you may apply the filter with IP and with the allowed conditions.
Example:
Regards,
Vishal Ranpariya
Technical Account Manager | Sophos Technical Support
Sophos Support Videos | Knowledge Base | @SophosSupport | Sign up for SMS Alerts |
If a post solves your question use the 'This helped me' link.
