So here is an idea, if you make a really complicated hard to debug system perhaps put some time into developing tools to diagnose said system. then you'll notice on that invalid traffic log all zone information is removed.Īlso, why did the time extension to 3 hours fix the connection issues but only for a time? And why would any connection not work with a 3 hour window if the connection is fresh? Invalid traffic without reasoning is the most pointless error possible. so where are the logs? When a system fails- when, how, and why there was a failure should be in the logs. Not only this, you say it yourself this is a complicated firewall system. isolating systems is but disabling the system you seek to debug seems counterproductive. problem still returns.Īnd no disabling everything is but really an it principle. There are people dedicated or investing there free time to help others like in this reddit. And of course, there are terms of service (TOS): But i am not able to actually see anything about censorship. The Sophos community is a space created and owned by Sophos. I personally have a huge issue with the claim about censorship or anything related to this. If you introduce a new ISP (WAN link), you need to be careful about the routing of this traffic. This entire thread sounds like a ISP/Networking issue, not a Firewall issue. The business customers have direct links and support case structures etc.Ī review of your initial thread about the WAN Routing. We do not have the tools to support a home users like we could assist a business customer. The community members (and Sophos Staff like me), are happy to help but we need the corporation by the Home users. We are happy to help, if this issue occur and give/gave some tools to dig deeper into the issue, if the interest is there. It is hard to find an issue, if the issue is not present anymore. There were multiple threads in the Sophos Community from OP. Just to give some background to this story. r/HomeNetworking - Simpler networking advice. r/pfsense - for all things pfsense ('nix firewall) Might be able to find things useful for a lab. r/hardwareswap - Used hardware, swap hardware. r/buildapcsales - For sales on building a PC r/linux - All flavors of Linux discussion & news - not for the faint of heart! Try to be specific with your questions if possible. r/linux4noobs - Newbie friendly place to learn Linux! All experience levels. r/datacenter - Talk of anything to do with the datacenter here We have an official, partnered Discord server which is great for all kinds of discussions and questions, invite link is clickable button at the top of the sidebar or right here.Keep piracy discussion off of this subreddit.Īll sales posts and online offers should be posted in /r/homelabsales.īefore posting please read the wiki, there is always content being added and it could save you a lot of time and hassle.įeel like helping out your fellow labber? Contribute to the wiki! It's a great help for everybody, just remember to keep the formatting please. Report any posts that you feel should be brought to our attention. We love detailed homelab builds, especially network diagrams! Post about your homelab, discussion of your homelab, questions you may have, or general discussion about transition your skill from the homelab to the workplace. Please see the full rules page for details on the rules, but the jist of it is: Labporn Diagrams Tutorials News Subreddit Rules Though it does seem like they have taken the business setup and just said its an home edition.New to Homelab? Start Here! Homelab Wiki HomelabSales Wanted to use Sophos as we use it as one of the schools I work at and thought I could get a firewall for home and learn how to use it, at the same time. I am tempted to try Untangle, PFSense or OPNSense if I can't get this working, as I am pulling my hair out. Should I be using it bridge or gateway mode? Do i need to setup DHCP etc on Sophos or can I allow it on the router? Afterwards you can play with all the security features in the firewall rule and see, what happens.īut this should work for every connection fine. You should start with a simple LAN to WAN Rule with MASQ enabled. This LAN interface works as a gateway for all clients. The other interface is defined as LAN and runs an own DHCP Server. This Interface will be setup as DHCP Client. In the router should be only one interface (XG). So basically one interface defined as WAN, which uses the connection to the router. You will have WAN and LAN zone interfaces. Ahhhhhhhhhh!!!!!! Tried this in gateway yesterday and I couldn't get any Internet connection.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |