Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 2 answers
  • Subscribers 26 subscribers
  • Views 6189 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to Setup Web Filtering using Sophos XG Firwall Virtual Appliance

Sujithkumar Suriyamurthy

I am actually trying to evaluate web filtering feature in Sophos XG Firewall. Prior to setup in our production environment we would like to simulate our requirement using our lab environment.

On-Prem 

Cisco RV042 Gateway Router with 2 VLAN --> VLAN 1 has local lab computers are connected --> VLAN 2 Wireless Clients are connected.

There is only one WAN port which is connected to the ISP

There is VPN Site-Site is also in place connected to Azure Network --> All the Inbound/Outbound traffic are routed to On-Prem Cisco Gateway

Out of the Local lab computers we have a hyper-v server where we have hosted Sophos XG Firewall Virtual Appliance with only one virtual nic to it.

 

Our Requirement:

We would like to terminate all the incoming / outgoing traffic to Sophos Virtual appliacnce to do a web filtering. 

 

Please suggest me a way do it.



This thread was automatically locked due to age.
  • 0

    Sujithkumar,

    with only one Virtual NIC, you can test XG as explicit proxy, so you need to redirect your user's browser to XG 3128 port and create proper Firewall and Web Filtering rule to filter traffic.

    The other way is to install XG in bridge mode but 2 nics are required.

    Regards

  • 0 in reply to lferrara

    Thank you very much for your response to my query!!!

     

    "so you need to redirect your user's browser to XG 3128 port" Since I am not that technical savvy, I have no idea in implementing this stuff. please help me out with the configuration & setup

     

    My Environment :

    On-Prem: Cisco RV042 Small Business Gateway Router 

    Cloud: Azure Virtual Network Gateway

     

    Established Site to Site VPN between On-Prem and Azure and even force tunnelled all traffic to reach On-Prem Cisco Router, now I would like to place Sophos XG Firewall before the Cisco and do web filtering. please help me out with step by step document if you have.

  • 0 in reply to Sujithkumar Suriyamurthy

    You need to setup XG as a Router during the setup wizard, provide the proper IP to WAN and LAN (they have to be in different subnet) and then:

    https://community.sophos.com/kb/en-us/125585

    On your client's browser, configure proxy to use xg lan ip with port 3128.

    Regards