Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 41 subscribers
  • Views 3987 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Comments in SCX files

Nez_Pottage

Hi all,

When editing an SCX file for Sophos XG / Connect VPN, is there a way that you can add comments into the file for information, i.e. in a split tunnel config, can we make a note of what the network address / range relates to?

Current config looks like below.

"remote_ts": [
"x.x.x.x/24",
"x.x.x.x23",
"x.x.x.x/32",
"x.x.x.x/32",
"x.x.x.x/32"
]

I posted before and was told to use format as below, but this fails to import, with a File Import Error, connection could not be parsed, unknown format, on our mac Sophos Connect client v1.4

"remote_ts": [
"x.x.x.x/24",
# Access Server X
"x.x.x.x23",
# Access Network Y
"x.x.x.x/32",
"x.x.x.x/32",
"x.x.x.x/32"

What an I missing?

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    Hi 

    Thank you for reaching out to Sophos Community.

    Have you tried importing the .scx file on a different device/OS? Also, kindly try using the updated version.

    Adding # at the beginning of the line will indicate that this is a comment; this will not affect any of the configurations.

    Erick Jan
    Community Support Engineer | Sophos Technical Support
    Sophos Support Videos Product Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

  • 0 in reply to Erick Jan

    Hi Erick,

    Have tried the SCX on mac and windows machines.

    I'm confused when you say use the updated version.  Of what?   Connect v1.4 is the newest version on MacOS as it hasn't been updated by the Sophos Devs in years.

    Windows we have tried in the latest v 2.3

    Also tried exporting the config from the XG, and literally adding one line as below.  Still, parse error

    "remote_ts" : [
    "0.0.0.0/0"
    #test
    ],

Reply
  • 0 in reply to Erick Jan

    Hi Erick,

    Have tried the SCX on mac and windows machines.

    I'm confused when you say use the updated version.  Of what?   Connect v1.4 is the newest version on MacOS as it hasn't been updated by the Sophos Devs in years.

    Windows we have tried in the latest v 2.3

    Also tried exporting the config from the XG, and literally adding one line as below.  Still, parse error

    "remote_ts" : [
    "0.0.0.0/0"
    #test
    ],

Children
  • 0 in reply to Nez_Pottage

    Hi,

    what format did you use to import the file, was it the same as the exported file?

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Original .scx file

    Simple test.  XG Gui, export connection.  Unzip.

    Edit scx file in a text editor, same one i;ve always used that does not apply any formatting

    simply added the # test line after the only IP line in this SCX file, saved and imported.

    If I remove the line, it imports quite happily.  100% cannot use # to comment

    I tried "# comment" but no joy

    Out of interest, what is the tgb file also included in the export?  I see that has comments in.

    We would need to use the command line functions to import these configs to our machines, so not sure if tgb is supported rather than scx

  • +1 in reply to Nez_Pottage

    Hello there,

    I thought you originally asked about the SSL VPN file (.ovpn). You can add the comments to the file, as I mentioned in the older post.

    However, the IPsec (.scx) uses JSON, so adding comments to the file is not allowed.

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
Unfiltered HTML