Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 3 replies
  • Subscribers 27 subscribers
  • Views 3834 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Xg Firewall - LAN to WAN not working with custom destination network. Logs show policy id 0

Omer AhmedKhan

Hi,

I recently configured a firewall policy to allow traffic from LAN to a specific ip on the WAN interface but when i tested the rule, i got blocked message and logs show policy id 0.

Basically its not going into the firewall rule that i created.

I am using xg as a proxy.

I then tested another laptop by making the xg as my gateway and the same firewall rule started working.

Am k doing something wrong in proxy mode?

Same thing happened when i set the destination sevices to "http & https" only. It just skipped the firewall rule as if it never existed.

I basically want

Source: lan

Network: any

Destination: wan

Network: "specific ip or fqdn"

Service: any



This thread was automatically locked due to age.
Parents
  • +1

    Add the port you are using as the proxy to the rule.  i.e. if you are using port 3128 for proxy and want to allow http and https you need all three ports in the rule.

    Cheers,

    Charles

  • 0 in reply to CMR

    Charles,

    Thanks for your advice will surely try it out. But what about the case where destination service is set to "Any" and only the destination network is restricted? Even then traffic skips the firewall rule and goes down the list and if no other match is found it returns firewall id "0".

Reply
  • 0 in reply to CMR

    Charles,

    Thanks for your advice will surely try it out. But what about the case where destination service is set to "Any" and only the destination network is restricted? Even then traffic skips the firewall rule and goes down the list and if no other match is found it returns firewall id "0".

Children
No Data