Sophos access a webserver from the web

web-server http iis
5,801

Please be more specific about what you're trying to do. The WAF is a feature that protects internal web servers. As such, you MUST set it up correctly in order to gain access to your internal server. This usually requires that you do the following:

  • (optional) Add a new IP address to your external NIC to accept connections for the internal web servers
  • Setup the DNS so that your external FQDN points to the external IP address of the firewall that you chose to use for this.
  • (optional) If you're using SSL, then go to certificate management and make yure you have uploaded the X509 certificate for your web site including the private key (PKCS#12 format) as well as all intermediate CA up to and including the root.
  • Define a new real web server that contains the host name (or IP address) and protocol type (HTTP/HTTPS) of the internal web server
  • Create a new virtual web server, specifying the interface (IP) that should be used, the protocol type (HTTP/HTTPS), the external port number to use, the external domain name(s) (FQDN of your web server as seen from the outside), the reference to the real web server you created above (you can use more than one for fail-over/load balancing) and specific the type of firewalling that needs to be done. Typically, you would pick "basic" and check both "Enable HTML rewrite" and "pass host header", at least initially.

Once all of this has been done, enable the WAF and it should work. If it doesn't, then start by creating a new firewall profile, select the "monitor" mode and leave everything unchecked: that's the most permissive firewall rule possible and test again.

If that doesn't fix it, the review the logs on your web server: did it receive the requests ? Did it reply to them with a valid response code ? Etc.

If all else fail, please describe your setup in detail, including what application you're running on the web server (because some simply do not work with Sophos WAF, like OWA or Citrix web interface)

Share:
5,801

Related videos on Youtube

plaugg
Author by

plaugg

Updated on September 18, 2022

Comments

  • plaugg
    plaugg over 1 year

    I have an web server (IIS) behind an SOPHOS UTM 9

    I have setup the Web Application Firewall feature It is a completely fresh install. No other settings have been edited. When I try to access the server form the web I get: "Forbidden" error message in the web browser.

    Any ideas ?

  • Admin
    Admin about 11 years
    I'm almost sure iis is correctly installed. SPOHOS on the other hand seems to allow all trafic. What kind of information do you need
  • Admin
    Admin about 11 years
    try localhost/iisstart.htm if you get an error code it should be 403.[1-20], that number after the decimal will direct you to your problem. I'd start by doing a web search on that code, eg google:'IIS 403.5' and that should point you in the right direction.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

IIS 6.0 Server Too Busy HTTP 503 Connection_Dropped DefaultAppPool
IIS HTTP to HTTPS relative redirect
Can you check/monitor the client certificates sent in requests using Wireshark?
What's the maximum number of HTTP connections I can have open in one Windows Server 2008 box?
IIS 7 http bindings option is missing
How to access site from outside, hosted on IIS?
Block POST PUT and DELETE but allow GET from specific referrer
ASP.NET HttpModule gives “Connection Reset” in browser
IIS7 doesn't see my default document - HTTP Error 403.14
how to disable http methods via iis