Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 624 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG and Adguard Home on Docker Synology

Adam Adamek

I have a synology server at home with adguard home. I created the rules in sophos xg (I think I missed something) because when the lan connection uses the ip of the synology server where adguard is, I can't access the website, when I change the dns server address to google 8.8.8.8 or other external everything works. What rules should I add to the ones I have? In the attachment screen rules.



This thread was automatically locked due to age.
Parents
  • +1

    Hi,

    where is the Synlogy server located? If it is internal, then you don't need rules 1, 3 and 9 unless you expect to access the server from the internet?

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Synology is PortC in the picture. Sophos works in bridge mode, at the ISP on his router I have port 443 directed to synology, on it I provide synology to the network via a reverse proxy. It's all working, accessing synology from the web. If I change Synology from DMZ to LAN, then adguard works and synology is as DNS in the connection settings on the computer, but I would like to separate Synology to DMZ due to the fact that it is exposed to the network, and thanks to sophos xg I can see how often it is scanned. Should I remove the rules you're talking about? I added Synology in the host section.

  • 0 in reply to Adam Adamek

    Hi,

    you don't need both way rules, but you do need to change the access to the server to be DMZ, Rule 3 defeats the purpose of having the server in the DMZ, you need to remove that rule.

    Ian

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • 0 in reply to Adam Adamek

    Hi,

    you don't need both way rules, but you do need to change the access to the server to be DMZ, Rule 3 defeats the purpose of having the server in the DMZ, you need to remove that rule.

    Ian

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

Children
No Data
Unfiltered HTML