Hello, I have another question regarding the business rule creation, when created does this rule automatically create a bidirectional rule by default or must I check "Create Reflexive Rule" to allow traffic to flow in both directions? Also when would you use "Rewrite source address ( Masq).
This thread was automatically locked due to age.
If you are hosting server like Webserver, Email server,, you don't need to create any Reflexive Rule.
XG is a stateful inspection firewall, it will allow all response traffic from the same business rule.
You should use NAT or Masa when you what to communicate between Public and Private IP network or you don't have the correct routing table on system or server.
0 SophosNewby over 6 years ago in reply to Ronak Sheth 0 SophosNewby over 6 years ago in reply to SophosNewbyI am probably going to ask a lot of really dumb questions as I am setting up this device, do Business Application Rules also need to have an accompanying User/Network Rule? If I am setting up admin access to a database on our private LAN is it best to create a Business Application Rule or User/Network rule? I have a specific IP address of the user connecting who needs to manage a Linux server on port 22.
0 Ronak Sheth over 6 years ago in reply to SophosNewbyAs per my earlier post Business rule do not need any additional rules to work.
If your server is on private IP and user who is going to access is on internet you will have to create only Business rule. Network and User rule wont work.
If you want to allow specific IP address to access your server, you need to add all IP/Host in Source Allowed Client Networks in your business rule.