External SNMP can't connect to WAN

Hi David,

Greetings.

The configured Firewall Rule is incorrect, this rule will inform XG to route traffic from Any Interface on XG to WAN.

To allow SNMP traffic from an external host to the WAN interface no Firewall Rule needs to be configured.

When a Request is made from external host on WAN IP, this will be directly hitting the WAN interface which will not require any rule.

If you can share few more details on this matter, it will help me investigate it further.

Thanks

Sachin Gurung

Hi David,

Greetings.

The configured Firewall Rule is incorrect, this rule will inform XG to route traffic from Any Interface on XG to WAN.

To allow SNMP traffic from an external host to the WAN interface no Firewall Rule needs to be configured.

When a Request is made from external host on WAN IP, this will be directly hitting the WAN interface which will not require any rule.

If you can share few more details on this matter, it will help me investigate it further.

Thanks

Sachin Gurung

I need to allow SNMP to the XG from a host on the public internet so it can query counters etc.

David,

I guess you would like to monitor XG via snmp. Did you have a look at System > Administration > SNMP. Enable SNMP and configure the community where you can device who can retrieve snmp data from.

Hope this helps!

lferrara said:

David,

I guess you would like to monitor XG via snmp. Did you have a look at System > Administration > SNMP. Enable SNMP and configure the community where you can device who can retrieve snmp data from.

Hope this helps!

Hi Luk, with the release of MR3 today you can now connect SNMP via the WAN. Please note you will need to enable SNMP for the WAN Zone via the Device Access table (System > Administration > Device Access)

More information on MR3 can be found at https://community.sophos.com/products/xg-firewall/b/xg-blog/archive/2016/06/08/sfos-15-01-0-mr-3-released