How to Configure Sophos XG Firewall? 

Configuring Sophos XG Firewall 

  • The initial step Configure Sophos XG Firewall procedure is to download the Sophos general Authentication Client and install it on your system. 
  • Log into your Sophos account and then select the Download Client option available in the left panel of the screen.  
  • Click the Download option based on the OS version of your system. It is available for Windows, Mac, Android, iOS, and Linux. 
  • Now, install the Authentication Client on your system using the prompts that are displayed on your system.  
  • Launch the Client application on your system and enter the correct credentials in the Login window.  
  • Highlight the checkbox near the Save Password option and tap OK. The firewall has now been configured.    

How to Register Sophos XG Firewall?

  • First, you have to log into your MySophos account using the credentials. 
  • Select the Configure Sophos XG Firewall option in the next step and click the Register Device option. 
  • In the Enter serial Number textbox, you have to key in the correct serial number. 
  • Your Sophos firewall will now be activated. 

How to Open Port In Sophos XG Firewall?

  • Follow the procedure given here to open ports in Sophos XG Firewall. 
  • Sign into the Sophos account and go to the Sophos XG Firewall Configuration Guide tab. Click the Add Firewall Rule button. 
  • Select the User/Network Rule option or the Business Application Rule option. 
  • Choose the Application Template option and then select the DNAT/Full NAT/Load Balancing option. 
  • Fill in the following details Source zones, Allowed client networks, Destination host/network, and Services.
  • Protected servers.
  • Protected zone.
  • Mapped port.
  • Rewrite source address.
  • Create a reflexive rule. 
  • Navigate to the Destination & Service section and go to the Services field. 
  • Choose the Add New Item option followed by the Create New option. 
  • Select the Services option and key in a name for it. 
  • Now, choose the TCP/UDP option in the next Configure Sophos XG Firewall step. Specify the IP address of the Source Port and the Destination Port. 
  • Click the Save button to save the Open port settings. 

How to use Sophos XG Firewall Reverse Proxy?

ISSUE 1: NOT ABLE TO ACCESS THE WEBSITE

  • Navigate to the WAF Network Socket window, and check the Port 80 or Port 443 field.
  • You have to run the WAF service only. Make sure not to run other services on port 80 or port 443.
  • Enter the command /var/mdw/scripts/reverseproxy restart to restart the service manually.

ISSUE 2: NOT ABLE TO ACCESS THE WEB PAGE

  • Configure Sophos XG Firewall in the NTLM settings.
  • Instead of using some other service to run, prefer the WAF service.
  • Navigate to Common Threats Filter and check for any false-positive proxy.

To View The Waf Log Files

  • Navigate to Logging & Reporting.
  • Select the View Log Files option followed by the Today’s Log Files option.
  • Go to Web Application Firewall Live Log.
  • Then, visit the location ‘tail -f /var/log/reverseproxy.log.’
Configure Sophos XG Firewall

How to Create Virtual Host In Sophos XG Firewall?

  • Log into the Web Admin Console account.
  • Open the Create Virtual Host window.
  • Fill the Virtual Host Name and Description fields in the Virtual Host section.
  • In the Address Type section, select the IP option.
  • Enter 203.88.135.208 in the IP address field.
  • Navigate to the Mapped IP address section and type 192.168.1.4 in the IP Address field. Make sure to select the IP option using Sophos XG Firewall Configuration Guide.
  • Select the DMZ option from the Physical Zone drop-down menu.
  • In the Port Forwarding section, checkmark the box next to the Port Forward option.
  • Select the TCP option in the Protocol field. Set the port type as Port.
  • Type 80 in the Public Port field and also enter 80 in the Mapped field.
  • Once you have changed the settings, select the Create button at the bottom-left corner of the screen to create a virtual host to Configure Sophos XG Firewall.
  • If you want to create a virtual host for the mail server, launch the Create Virtual Host window and then fill the relevant Clean my PC details.

How to Hard Reset Sophos XG Firewall?

Using Command Line Interface

  • Select the Admin option followed by the Console option.
  • Now, the Command Line Interface window displays on the screen.
  • Select Device Management Reset to Factory Defaults.
  • Enter the letter ‘y’ without the quotes in the Command window.

Using Web Admin Console

  • Open the Backup & Firmware window.
  • Select the Firmware tab.
  • Select the Boot with factory default Firewall icon.
  • When prompted, select the Boot with factory default button.

Using Sophos Utm

  • Sign into the UTP WebAdmin account.
  • Navigate to the Management tab and select System Settings Reset Configuration or Password.
  • Click the Run factory reset now button to reset the antivirus to Configure Sophos XG Firewall settings.