I think I want to cry

The XG85 is my first Sophos device. I bought it based on the solid reputation of Sophos. This device is however really hard to configure and still full of bugs. The documentation is poor, most relevant documents are for the UTM. Is there a way to get under the hood to configure? Even the CLI does not allow to set the network and NAT parameters properly.

NAT is in Firewall Policies
And at least for me that works without a problem.
What is the issue?

So there is a different NAT for every policy? How does this work? What are the NAT rules for SSL remote access? Where can I consult the actual NAT table?

So there is a different NAT for every policy? How does this work? What are the NAT rules for SSL remote access? Where can I consult the actual NAT table?

All NAT is always setup in policy, so if you want SSL Remote Access, you need to make a policy for that as well. You'll need to either way, cause otherwise not much will happen

I do not know if there is a view of all enabled NAT rules though

You can login to console or under admin via web interface. Choose option 5 for device management and then option 3 device management. You will get a shell that will let you run the relevant iptables commands. The access level is readonly as far as I remember so you may not be able to change anything.

Option 4 in cli ( device console) gives you cyberoam console that you can run different commands. You can use ? for help and a list of commands there.

Thanks. I had not made yet the link with cyberoam. I was assuming that the XG was an UTM evolution rather than based on cyberoam.The cyberoam documentation is quite usefull.