Comments in SCX files

Hi all,

When editing an SCX file for Sophos XG / Connect VPN, is there a way that you can add comments into the file for information, i.e. in a split tunnel config, can we make a note of what the network address / range relates to?

Current config looks like below.

"remote_ts": [
"x.x.x.x/24",
"x.x.x.x23",
"x.x.x.x/32",
"x.x.x.x/32",
"x.x.x.x/32"
]

I posted before and was told to use format as below, but this fails to import, with a File Import Error, connection could not be parsed, unknown format, on our mac Sophos Connect client v1.4

"remote_ts": [
"x.x.x.x/24",
# Access Server X
"x.x.x.x23",
# Access Network Y
"x.x.x.x/32",
"x.x.x.x/32",
"x.x.x.x/32"

What an I missing?

Thanks

Edited TAGs
[edited by: Erick Jan at 12:11 AM (GMT -7) on 24 May 2024]

Top Replies

emmosophos 1 month ago in reply to Nez_Pottage +3 verified

Hello there, I thought you originally asked about the SSL VPN file (.ovpn). You can add the comments to the file, as I mentioned in the older post. However, the IPsec (.scx) uses JSON, so adding comments…

Parents

0 Erick Jan 1 month ago

Hi

Thank you for reaching out to Sophos Community.

Have you tried importing the .scx file on a different device/OS? Also, kindly try using the updated version.

Adding # at the beginning of the line will indicate that this is a comment; this will not affect any of the configurations.

Erick Jan
Community Support Engineer | Sophos Technical Support
Sophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Nez_Pottage 1 month ago in reply to Erick Jan

Hi Erick,

Have tried the SCX on mac and windows machines.

I'm confused when you say use the updated version. Of what? Connect v1.4 is the newest version on MacOS as it hasn't been updated by the Sophos Devs in years.

Windows we have tried in the latest v 2.3

Also tried exporting the config from the XG, and literally adding one line as below. Still, parse error

"remote_ts" : [
"0.0.0.0/0"
#test
],
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 Nez_Pottage 1 month ago in reply to Erick Jan

Hi Erick,

Have tried the SCX on mac and windows machines.

I'm confused when you say use the updated version. Of what? Connect v1.4 is the newest version on MacOS as it hasn't been updated by the Sophos Devs in years.

Windows we have tried in the latest v 2.3

Also tried exporting the config from the XG, and literally adding one line as below. Still, parse error

"remote_ts" : [
"0.0.0.0/0"
#test
],
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

0 rfcat_vk 1 month ago in reply to Nez_Pottage

Hi,

what format did you use to import the file, was it the same as the exported file?

Ian

XG115W - v20.0.1 MR-1 - Home

XG on VM 8 - v20 GA

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Nez_Pottage 1 month ago in reply to rfcat_vk

Original .scx file

Simple test. XG Gui, export connection. Unzip.

Edit scx file in a text editor, same one i;ve always used that does not apply any formatting

simply added the # test line after the only IP line in this SCX file, saved and imported.

If I remove the line, it imports quite happily. 100% cannot use # to comment

I tried "# comment" but no joy

Out of interest, what is the tgb file also included in the export? I see that has comments in.

We would need to use the command line functions to import these configs to our machines, so not sure if tgb is supported rather than scx
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
+1 emmosophos 1 month ago in reply to Nez_Pottage

Hello there,

I thought you originally asked about the SSL VPN file (.ovpn). You can add the comments to the file, as I mentioned in the older post.

However, the IPsec (.scx) uses JSON, so adding comments to the file is not allowed.

Regards,

Emmanuel (EmmoSophos)

Technical Team Lead, Global Community Support
Sophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.
Cancel
Vote Up +3 Vote Down

Sign in to reply

Verify Answer

Reject Answer

Cancel