Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 26 subscribers
  • Views 6710 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Port forward - Sophos XG 210 - firmware SFOS 16.01.2

Sascha Papini

 Hi all, I need to forward one TCP port (580) to one server in my DMZ (server A). I have a XG210 with /29 in WAN link:

I configure new business application with type DNAT/Full NAT

I flag the "Rewrite source address (Masquerading)"  and "Create Reflexive Rule", it's correct ?

I need to create another network rule for NAT all outbound traffic of my server A with public IP (1.1.1.2) ?

 

Thank's Sascha



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to lferrara

    Hi lferrara, thank's for reply :)

    I remove the flag on "Create Reflexive Rule", but I need to create another network rule for NAT all outbound traffic of my server A with public IP (1.1.1.2) ?

    The server A can generate traffic to port 580 and I want the new connection to another server on internet have a source ip 1.1.1.2

     

    ps- when I check "Create Reflexive Rule" ?

     

    Thank's Sascha

  • 0 in reply to Sascha Papini

    Reflexive rule creates a rule exactly the dnat but the source and destination are inverted. If you only need port 580, it is ok. I always prefer to create it manually.

    Regards