Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 1 reply
  • Subscribers 28 subscribers
  • Views 5866 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG doenst allow you to lock down Management on WAN interface to a trusted IP only.

Stephen Wratten

I've just setup a new Sophos XG, which i have at a remote site using an IPSec VPN.

I want to allow management over the WAN port for times the VPN may be down. Not wanting the whole internet to be able to reach the management interfaces I locked it down to our local IP range 172.16.0.0/12 and also the Public IP address from where i am localted x.x.x.x

But i am still able to connect to it from other public IP address's. 

 

I did this under System / Administration / Device Access, and creasted the local ACL exception rule

 

Source Zone

           Any

Network/Hos

           172.16.0.0/12

           x.x.x.x

 

Services

          HTTPS

          SSH

 

Action

          Accept

 

 

 

 



This thread was automatically locked due to age.
Parents Reply Children
No Data