This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Block traffic between subnets

Hi!

I would like to block all traffic between my subnets. I have 5 different subnets and they are not supose to talk to each other.
It seems that even if i add rules for this, some traffic is still allowed.

I know that UTM creates its own rules "behind" the webGUI. Could this be the problem?
It feels like i dont really have control over the firewall, some thing are allowed even if i dont have any rules for it.

Any sugestions on how to proceed?

This thread was automatically locked due to age.

Parents

0 sachingurung over 9 years ago

Hi Daniel,

Please provide us more information as to what is still allowed?

Thanks

Sachin Gurung
Team Lead | Sophos Technical Support
Knowledge Base | @SophosSupport | Video tutorials
Remember to like a post. If a post (on a question thread) solves your question use the 'This helped me' link.
Cancel
Vote Up 0 Vote Down

Cancel
0 DanielAdolfsson over 9 years ago in reply to sachingurung

Nothing is allowed between them.

They are only to access WAN.
Cancel
Vote Up 0 Vote Down

Cancel
0 apijnappels over 9 years ago in reply to DanielAdolfsson

Hello,

Are you using web filtering? If so, than you will still be able to access web resources (port 80, 443) between subnets unless you specifically deny this access in the web filter.

Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 apijnappels over 9 years ago in reply to DanielAdolfsson

Hello,

Are you using web filtering? If so, than you will still be able to access web resources (port 80, 443) between subnets unless you specifically deny this access in the web filter.

Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 DanielAdolfsson over 9 years ago in reply to apijnappels

I'am not using web filtering.

Only thing i need to know is how i block all communication between the subnets.

As my block rules is not working to 100%
Cancel
Vote Up 0 Vote Down

Cancel
0 apijnappels over 9 years ago in reply to DanielAdolfsson

Can you give an example of which traffic is still allowed? I guessed it might have been web filtering, but if you can be specific on what you've found that comes through, than we might be able to pinpoint where to look.

Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.
Cancel
Vote Up 0 Vote Down

Cancel