VibrantSpring Promo
Save up to 50%80%70%70%70%70%70%70%70% on a Sophos Firewall of your choice.
Choose XGS Firewall modelSave up to 50%80%70%70%70%70%70%70%70% on a Sophos Firewall of your choice.
Choose XGS Firewall modelYou can disable the Web filter, Intrusion prevention, Application Control, Advanced Threat Protection or other security features on the firewall. But the traffic still passes through the packet filter. To actually disable everything, there is a bypass rule. When this is enabled for a host or network, the traffic is affected by the firewall.
Connect to the firewall via SSH to start the Device Console. After that you need the following commands.
In our example we want to create a rule from network 192.168.33.0/24 to network 192.168.46.0/24.
set advanced-firewall bypass-stateful-firewall-config add source_network 192.168.33.0 source_netmask 255.255.255.0 dest_network 192.168.46.0 dest_netmask 255.255.255.0
The back rule must not be missing either. That the traffic from the destination network also goes through the bypass rule against our firewall.
set advanced-firewall bypass-stateful-firewall-config add source_network 192.168.46.0 source_netmask 255.255.255.0 dest_network 192.168.33.0 dest_netmask 255.255.255.0
⚠️ The bypass rule lets everything through, so you no longer need firewall rules and the traffic is no longer displayed in LogViewer. You should really only create a rule if you know what you are doing and are aware of the security risk. The firewall will simply let the traffic through and none of the protection functions will work for the specified network anymore.
The following command can be used to display which bypass rules are recorded on the firewall.
show advanced-firewall
The delete command almost identical to the command to create the rule. Instead of add, one uses del.
set advanced-firewall bypass-stateful-firewall-config del source_network 192.168.33.0 source_netmask 255.255.255.0 dest_network 192.168.46.0 dest_netmask 255.255.255.0
Save up to 50%80%70%70%70%70%70%70%70% on a Sophos Firewall of your choice.
XGS 107
30%40%30%30%30%30%30%30%30% OffXGS 116
40%70%40%40%40%40%40%40%40% OffXGS 126
50%70%50%50%50%50%50%50%50% OffXGS 136
50%70%50%50%50%50%50%50%50% OffXGS 2100
50%80%60%60%60%60%60%60%60% OffXGS 2300
50%80%70%70%70%70%70%70%70% OffXGS 3100
50%80%70%70%70%70%70%70%70% OffXGS 3300
20%70%50%50%50%50%50%50%50% OffXGS 4300
50%70%50%50%50%50%50%50%50% OffXGS 4500
50%70%50%50%50%50%50%50%50% OffXGS 5500
50%70%50%50%50%50%50%50%50% OffXGS 6500
50%70%50%50%50%50%50%50%50% Off