Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 5431 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Firewall Manager - Object alias

stefanotoni

Hello, using Firewall Manager, is possibile to use an alias host, where a specific object take on a value when I push policy to a different firewall (belong to the same group device)?

Thank you



This thread was automatically locked due to age.
Parents
  • 0

    Hi Stefano,

    Can you elaborate more on your query?

    Ravi

  • 0 in reply to RaviPatel

    Hello Ravi thank you for your response

    I am using Sophos Firewall Manager using Device Configuration --> Policy to push the same policy to a group device (XG-device1, XG-device2,..)

    When I define a new policy, es. to permit a single IP address (PC1) to access to a certain web site, how I can create the source IP address differente for each XG-Firewall?

    XG-Firewall1 (internal lan 192.168.10.0/24)

    PC1: 192.168.10.200

    XG-Firewall2 (internal lan 192.168.20.0/24)

    PC1: 192.168.20.200

    Thank you

  • 0 in reply to stefanotoni

    Hi Stefano,

    First you need to create host for 192.168.10.0/24 and 192.168.20.0/24 (Device Configuration > Objects > Hosts and Services > IP Host) and push host to respective devices.

    Then you need to create dynamic host for XG devices and map above hosts.

    Steps To Create Dynamic host:


    1. Go to System Management > Device Settings > Dynamic Objects > Host ,click on add button.
    2. Give "TEST" name for host and Select Type Network
    3. Go to Device-Host mapping section ,Select XG device-1 and select host (192.168.10.0)
    4. Click on + Button select XG Device-2 and select host (192.168.20.0)
    5. Click on save button to save the dynamic object

    Now go to Device Configuration section and select Group you have created like peripheral firewall.Create a policy using user/network rule option in which select Source Zone "TEST" and push policy in Group.

    Ravi

Reply
  • 0 in reply to stefanotoni

    Hi Stefano,

    First you need to create host for 192.168.10.0/24 and 192.168.20.0/24 (Device Configuration > Objects > Hosts and Services > IP Host) and push host to respective devices.

    Then you need to create dynamic host for XG devices and map above hosts.

    Steps To Create Dynamic host:


    1. Go to System Management > Device Settings > Dynamic Objects > Host ,click on add button.
    2. Give "TEST" name for host and Select Type Network
    3. Go to Device-Host mapping section ,Select XG device-1 and select host (192.168.10.0)
    4. Click on + Button select XG Device-2 and select host (192.168.20.0)
    5. Click on save button to save the dynamic object

    Now go to Device Configuration section and select Group you have created like peripheral firewall.Create a policy using user/network rule option in which select Source Zone "TEST" and push policy in Group.

    Ravi

Children
No Data