Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 9695 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Route Web Traffic based on URL Domain

RyanAllcorn

Hello

Hey guys, new to the XG Firewall and I wanted to know if its possible to direct traffic from the LAN zone to the WAN zone based on URL/domain?

For example, we have 2 WANs setup (Coax via TWC and Fiber via ATT). The general web traffic policy right now is set to load balance the traffic amongst both WANs. The issue is that a bank our users log into sees both WAN IPs and its causing extra security checks for our users logging in. In some cases it locks them out of the banking account and requires contacting support.

What I want to do is create a policy that will direct LAN zone to WAN zone traffic out ISP TWC if the URL is bankofamerica.com or *.bankofamerica.com. Is this possible?

Thanks in advance!



This thread was automatically locked due to age.
Parents
  • 0

    Ryan,

    your proposed rule will work. Make sure to put on top the other rule (LAN to WAN) that uses Load Balancing.

  • 0 in reply to lferrara

    Hey Luk

    Thanks for the reply!

    I was able to figure it out last night and all is working well. However I cannot get it to work with the wildcard (*).

    The approach I took was to create a new FQDN Host for bankofamerica.com and place that FQDN Host into a new FQDN Host Group called "Banking". When I try to add *.bankofamerica.com as a FQDN Host I receive an error, "You must enter a valid value for FQDN".

    What other approach could I take to add a wildcard?

    Thank you

Reply
  • 0 in reply to lferrara

    Hey Luk

    Thanks for the reply!

    I was able to figure it out last night and all is working well. However I cannot get it to work with the wildcard (*).

    The approach I took was to create a new FQDN Host for bankofamerica.com and place that FQDN Host into a new FQDN Host Group called "Banking". When I try to add *.bankofamerica.com as a FQDN Host I receive an error, "You must enter a valid value for FQDN".

    What other approach could I take to add a wildcard?

    Thank you

Children