Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Sophos Firewall

Discussions Sophos Firewall: v19.0 GA: Feedback and experiences

Sophos Firewall requires membership for participation - click to join

Thread Info

State Verified Answer
Locked Locked
Replies 99 replies
Answers 2 answers
Subscribers 78 subscribers
Views 41485 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Firewall: v19.0 GA: Feedback and experiences

LuCar Toni over 2 years ago

https://community.sophos.com/sophos-xg-firewall/b/blog/posts/sophos-firewall-os-v19-is-now-available

Release Notes: docs.sophos.com/.../index.html

"Old" V18.5 MR3 Thread: https://community.sophos.com/sophos-xg-firewall/b/blog/posts/sophos-firewall-v18-5-mr3-is-now-available

The V19.0 EAP Community: https://community.sophos.com/sophos-xg-firewall/sfos-v19-early-access-program/

About the Upgrade Issues:

See Known Issue List in Release Note

s:

This thread was automatically locked due to age.

Top Replies

MichaelBolton over 2 years ago +2

I have been running V19 on my personal firewall's since the public beta started. Here are my thoughts so far. I also upgraded a cluster of XG230's to test on tomorrow as well. * Performance-Based Link…

Parents

0 Riaan over 2 years ago

Picking up issues with NAT. I have multiple public IP's configured on a singe port all using the same Gateway which is the ISP's router. I need some outgoing traffic to come from a specific IP configure on the port.

For this I used NAT rules and translated the source to the IP specific public IP address I want the traffic to come from. Since v19, traffic is now translated to the IP of my ISP's router, in other words, the gateway for the port.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Riaan over 2 years ago

Picking up issues with NAT. I have multiple public IP's configured on a singe port all using the same Gateway which is the ISP's router. I need some outgoing traffic to come from a specific IP configure on the port.

For this I used NAT rules and translated the source to the IP specific public IP address I want the traffic to come from. Since v19, traffic is now translated to the IP of my ISP's router, in other words, the gateway for the port.
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 rfcat_vk over 2 years ago in reply to Riaan

Hi,

please review linked Nat rules to see if they might be useful.

ian

XG115W - v20.0.2 MR-2 - Home

XG on VM 8 - v21 GA

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 MichaelBolton over 2 years ago in reply to Riaan

Riaan Sorry for the late reply. NAT issues have been on going for a long time in SFOS. I reported this back in the V16 days, but they never did anything about it. Every once in a while on upgrades of a few different clusters, some NAT rules would just stop processing. If you had custom NAT rules, the easiest fix is to just delete them, and recreate. I also specify interfaces in NAT rules and disable the default SNAT rule. It seems to help on upgrades.
Cancel
Vote Up +1 Vote Down

Cancel