• Home
• Tech stuff
• Fierostuff
• Home construction
• Gallery
• Server temp

Sophos XG Firewall tips and tricks

Sophos Firewallis available as free lincense for home/education purposes. Free license is limited to 4 cpu and 6 GB of RAM.

Download and information is available from sophos.com.

with dy.fi Dynamic DNS: Quick notes

Dynamic DNS is a method for automatic updating IP address to DNS server. There are many dynamic DNS service providers, but for Finnish people, http://dy.fi is the best.

FAQ in dy.fi notifies: "If a host is not refreshed for 7 days, it is released (the DNS record is removed from the dy.fi zone)". Therefore we need to update records before that - let's make it 6 days. This is something I have not worked out in configuration yet.

Sophos XG needs a little bit of tweaking to work. Here's a short guide.

Login to SSH
From Main menu: select 5. Device Management
From Device Management menu: select 3. Advanced Shell
Query Dynamic DNS providers from internal DB: psql -U nobody -d corporate -c "select * from tblddnsserviceprovider"
Modify DynDns entry: psql -U nobody -d corporate -c "update tblddnsserviceprovider set serverstring = 'dy.fi' where serviceproviderid=1"
Check that serverstring was updated: psql -U nobody -d corporate -c "select * from tblddnsserviceprovider"
Should look like this:

		 serviceproviderid | displayname |  protocol  |          serverstring
		-------------------+-------------+------------+---------------------------------
						 2 | ZoneEdit    | zoneedit1  | dynamic.zoneedit.com
						 3 | EasyDNS     | easydns    | members.easydns.com
						 5 | Sophos      | cyberoam   | myfirewall.co
						 4 | DynAccess   | dyndns2    | setip.dynaccess.com
						 6 | No-IP       | noip       | dynupdate.no-ip.com
						 7 | DNS-O-Matic | dyndns2    | updates.dnsomatic.com
						 8 | Google DDNS | dyndns2    | domains.google.com
						 9 | Namecheap   | namecheap  | dynamicdns.park-your-domain.com
						10 | FreeDNS     | freedns    | freedns.afraid.org
						11 | Cloudflare  | cloudflare | api.cloudflare.com
						 1 | DynDns      | dyndns2    | dy.fi
		(11 rows)
	

Configure DynDns options from WebAdmin (Network - Dynamic DNS - DynDNS).

Troubleshooting can be done by downloading log file (Diagnostics - Tools - Troubleshooting logs - ddc.log)

These pages are compliant with markup and style standards published by the W3C.
Teppo Rinne | Kuopio, Finland | IRCnet: spad | Hotmail: oh7gct