Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 1 subscriber
  • Views 1924 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Technical details why proxy superseeds firewall

scorpionking
Hi all!

Can anyone tell me the technical details, why the web proxy comes before firewall rules?
We currently have a problem with the proxy (standard mode) allowing connections to all of our secured networks (servers, customer systems) which means a huge security risk.
I know of the possibility to block these connections with blacklists but that would mean that we have to maintain a list of more than 500 networks and servers (each with DNS name, host name and IP address). That's not feasible.

Or ist there any other more reasonable solution?

Thanks.


This thread was automatically locked due to age.
Parents
  • 0
    I would like to join this discussion. As FortiNet converts we had to deal with this also (being new to Sophos and all). 

    I understand that in transparent mode, the source IP is substituted and traffic is passed that way, but the UTM still should respect any existing firewall rules.
Reply
  • 0
    I would like to join this discussion. As FortiNet converts we had to deal with this also (being new to Sophos and all). 

    I understand that in transparent mode, the source IP is substituted and traffic is passed that way, but the UTM still should respect any existing firewall rules.
Children
No Data