Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 27 subscribers
  • Views 419 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Can I use FQDN host to define allowed client in a firewall rule?

JeffThompson

Hi,

I run a NextCloud server to allow some PCs on another site to back up to the NAS here.  I'd like to restrict the 'allowed clients' in my firewall rule for NextCloud so that only connections from the known remote site are permitted. The other site does not have a static IP, so all I can work with is the FQDN of its DDNS entry.  The rule is a web server rule for a subdomain 'nextcloud.xxxx.net '.

As far as I can see, the 'allowed clients' list in a SFOS FW rule only allows IP-based entries.  Does anyone know a way to use a FQDN in this situation?

Thanks!



Edited TAGs
[edited by: emmosophos at 11:27 PM (GMT -7) on 21 Jul 2022]
[locked by: emmosophos at 12:24 AM (GMT -7) on 8 Oct 2022]
Parents
  • 0

    Hi JeffThompson,

    Thank you for reaching out to the community, yes you can create the firewall rule with the source network or device to allow destination network like FQDN on firewall rule to allow communication between them 

    Thanks and Regards 

    "Sophos Partner: Infrassist Technologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Bharat,

    I'm not sure that your reply answers quite the same question.  I need to use a FQDN host as one of the 'allowed clients' in a FW rule (it's a web server rule in fact), not in the destination... the 'allowed clients' list on my rule only appears to allow IP addresses/networks.

  • 0 in reply to JeffThompson

    Hi JeffThompson,

    Can you share the same firewall rule currently configure with how packet flow is under MONITOR & ANALYZE || Diagnostics || Packet Capture 

    Thanks and Regards

    "Sophos Partner: Infrassist Technologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

Reply Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML