Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 28 subscribers
  • Views 7637 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Configure Canon Copier with Fiery to be able to scan and email XG210 Firewall rule

Paul Dunn

Ok, I am stumped and hopefully someone here might be able to help.

 

I have a Canon Copier with a fiery on our network.   The printer has an internal ip of 10.20.20.12.  I have a NAT rule set up to allow all traffic from a fixed IP address, for example http://64.125.209.12 to an internal IP address http://10.20.20.12.  All workstations are currently set up to print to the copier using IP (and the external IP)

With the rule, the copier is able to scan and email without a problem.

If I set up a new rule to only allow internal LAN traffic to access the external IP, the copier is not able to scan and send, I get an #752 error on the Canon, indicating the SMTP is not correct.  I have port 465 open for gmail SMTP, so I do not know what else I need to do to be able to print to the copier using the external IP and yet prevent the outside world to access the external IP and be able to scan and email

Any help is greatly appreciated



This thread was automatically locked due to age.
Parents
  • 0

    Hey  

    Would it be possible to clarify by sending screenshots of the 2 firewall rules you described in your initial message?
    It may be possible that your firewall rule to only allow internal LAN traffic is mis-configured.
    Is there a reason why your internal LAN hosts use the external IP address of the printer rather than the internal IP?
    I would also suggest to utilize the packet capture tool available via the GUI to confirm that traffic is matching to your desired firewall rule.

    Regards,

    FloSupport | Community Support Engineer

  • 0 in reply to FloSupport

    The printers are set up with external IP because that is the way they were set up before I started working here.

    I put in the firewall (because they need a firewall and I talked management into making the purchase) but all the workstations are set up to print via IP.  So I don't have to go around and reconfigure the printers on 85 workstations, I used the Sophos XG to NAT the external IP to the new internal IP of the printers.

    Eventually, some day, I hope to redo the whole way the printers are set up using an app or print spooler of some sort, but until then, I am trying to keep the static IP set up on the workstations, but somehow figure out where these bad print jobs are coming from, either internal or external, so I can stop them

    Here are 2 screen shots of the rules I have set up

     

     

     

    This first one is just a NAT from the external to the internal allowing everything.  With this rule on, people are able to scan to email and the email gets sent out by the canon copier using SMTP

     

    This rule only allows the NAT from the external to the internal from the LAN users.  When this rule is on (and the other rule is off) when you scan to email, the Canon cant sent the email and reports an errror code #752

     

    Thanks in advance so much for your help and concern

  • 0 in reply to Paul Dunn

    Hey  

    Would it be possible to please open your support access tunnel and PM me with the details so I can investigate your configuration further?

    Thanks,

    FloSupport | Community Support Engineer

Reply Children
No Data