Advisory: Sophos Endpoint "Your connection isn't private" after reboot. Policy settings can be returned to normal. See: KB-000045954 for the latest updates.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VLANs Working but Crashing when too much Inter-VLAN Traffic occurs (Connection Reset issues)

Thanks in advance,

I have a Sophos XG virtual Firewall running on Vmware ESXI. I have multiple VLANs in my home network.

VLAN 40 is supposed to be a service VLAN that allows SSL VPN Connections to come in and access certain VM services (This is working)

VLAN 99 is supposed to be my personal VLAN that can access any VLAN.

When I come in from an external network on SSL VPN everything works fine, however when I come through on my physical VLAN 99 to hit the service VLAN 40 at assets, with too much traffic, all established connections crash, and then recover after a minute or two.

For instance - I can have an SSH session going to one of the VMs but when I hit the web site that that VM supports , the web site never loads, and the SSH session disconnects with "connection reset". After a minute or two it starts pinging again.

The most recent thing I did was migrate this VM from not being in a VLAN to being in VLAN 40 and assigned it an IP address in that range with a default gateway of

I'm not really sure what exactly I have wrong here. My laptop connects to a Cisco Switch that is configured for VLAN 99 (FastEthernet 100 meg) and then trunks with a 1Gig Trunk port to the physical LAN port on the server. I can ping the, which is the address of the asset. It's an Eve-NG server by the way.

Any ideas would be greatly appreciate - the community has always been a huge help to me



This thread was automatically locked due to age.
  • Hi wiz0rd

    Please turn on packet capture from GUI and tcpdump from SSH option 4 let us know the status 

    console>tcpdump 'host <Destination IP>and proto ICMP

    console>dr  'host <Destination IP>and proto ICMP (this command will help to find any dropping traffic by firewall ) 

    You can check packet flow for destination IP under MONITOR & ANALYZE-->Diagnostics-->Packet Capture Click on configure Enter BPF string host <destination IP> and proto ICMP


    "Sophos Partner: InfrassistTechnologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • Bharat - I thank you very much sir. It was very kind to help me resolve my issue. The resolution was here:

    Bharat did a live chat with me to help me solve this issue.

    Thanks Bharat,

    I could not have done it without you!

  • The resolution was here:

    No this is not a resolution I would not recommend disabling it, as we found an issue in your network we checked by firewall-acceleration disable further investigation is required.


    "Sophos Partner: InfrassistTechnologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.