Required Configuration for Sophos Firewalls

Weave phones work well with Sophos firewalls. This guide details the necessary changes for Sophos firewalls. There are several important settings to verify that the Sophos is configured correctly:

1. On the left-hand menu, click Definitions & Users > Network Definitionsthen click the button labeled New Network Definition

2. Check definition section, DNS group and proper name fields:

  • In the Add Network Definition section, choose DNS group from the dropdown box labeled Type

  • In the Name field enter: Weave IPs

  • Please reach out to your onboarding contact for the list of IP addresses you need to allow.

  • Click Save

3. Firewall and new rule

  • On the left-hand menu, click Network Protection >> Firewall

  • Click the button labeled New Rule

4. Click the folder icon in the Sources field

5. Sources, services, and destinations: 

  • Click and drag Internal (Network) from the left-hand Networks menu into the Sources box

  • Click and drag Weave IPs from the left-hand Networks menu into the Destinations box

  • Click the folder icon in the Services field

6. Click and drag Any from the left-hand Services menu into the Services box and click Save 

7. Enabling new rule

  • Click the red X in the upper right corner of the left-hand Services menu

  • Click the toggle switch next to the new Weave IPs firewall rule that was just created, in order to enable the rule

8. Confirm that the new firewall rule shows enabled

9. Advanced Threat Protection

  • Click Advanced Protection

  • Click Advanced Threat Protection

  • Click the folder next to Network/Host Exceptions: Select Weave IP's

Screen Shot 2017-08-25 at 3.49.31 PM.png


Was this article helpful?