Allow access to AD through SOPHOS XG (So users can login with AD login https://www.eplatform.co/gb)

Question

I was wondering if you could help me setup a a firewall rule so that outside URL (eplatform, used for digital libraries) can communicate with our AD so that users can login with their AD username and password. I have added the external host IP of the LDAP server (AD) however my internal address (or destination address in Sophos) its on a /22 or 255.255.252.0 subnet is their a way I can point my destination address to the correct subnet? Whenever I type the destination address of my AD server it defaults to 255.255.255.0 
 Please do let me know if you have done anything like the above before with similar systems. Any help would be great!

dirkkotte · Accepted Answer

Do you really want to grant access to you AD from internet ?

OK, now to your problem....some things are unclear here... "is their a way I can point my destination address to the correct subnet? Whenever I type the destination address of my AD server, it defaults to 255.255.255.0"
Where do you try this .... you may provide a screenshot
Within DNAT you redirect a request to a specific destination-host ... not a destination-subnet...

Dirk

Systema Gesellschaft für angewandte Datentechnik mbH // Sophos Platinum Partner
Sophos Solution Partner since 2003
If a post solves your question, click the 'Verify Answer' link at this post.

Allow access to AD through SOPHOS XG (So users can login with AD login https://www.eplatform.co/gb)

Top Replies