Hi everybody, I have been using Sophos XG 135 for now 2 years. But i have juste noticed that from office (behind sophos firewall) we are unable to access this website bellow. - Web site: https://e-impots.gouv.ci/ - Error message : " Ce site…

Is there a way to make a dns request route apply to all sub-domains? Example: dns request route for domain.com would also apply to sub.domain.com and sub.sub.domain.com

Hi All, We have a ipsec tunnel from the Branch office to the Head office. We used this KB ( https://support.sophos.com/support/s/article/KB-000035798?language=en_US ) to route traffic from a specific subnet at the branch office to the WAN of the Head…

Hello, we have simple setup with our network. Now we added vlans for our wifi. (multiple, one for guest , notebooks, smartphones) If i get it correct it would be much safer of security point to let the Sophos XG getting all dns request right?…

Hi everyone, I'm a long time UTM user that just made the cut over to Sophos Firewall and I've got one nagging issue that I can't figure out. The first time a user goes to browse a web page, there is a delay of 10-15 seconds or so. Once you get past that…

Hello guys! Long time UTM user, absolute newbie when it comes to XG..Anyway.. I need one specific thing. I have 3 dynamic dns hostanames. And one internal webserver. e.g. 10.10.10.1 I need to use WAF and redirect first.dyndns.com to 10.10.10.1 …

Hi! I installed Sophos XG VM in my home and I'm testing it and probably will use it for my home net and lab. Sophos runs as a VM on my homelab server. I have 2 ubnets there: 1. 192.168.1.0/24 - called Outside wih FW WAN interface attached to it…

Hi, noticed this behavior: - XG configured for 3 DNS servers - on upstream device only those 3 DNS servers are allowed for XG - occasionally XG sends DNS request to many other DNS servers and these are denied by upstream device - issue on 18.5.1 and…

Couldn't delete the post, so am editing it. I figured out how to add the XGS as the DNS server: in DHCP, uncheck the box to use the DNS settings and set the interface IP as the DNS server.

Is it possible to setup 2 groups for SSL VPN where each group has its own DNS settings? I have 2 AD domains on my LAN and want to have clients for AD1 get the AD1 DNS servers and the AD2 clients get AD2 DNS servers. Thanks.

System Configuration: 2x XG125s in an HA Pair running SFOS 17.5.15 MR-15. We have two ISP connections feeding separate unmanaged switches which feed Two WAN ports on both units. (ISP->UNMANAGED SWITCH->WAN Port). This enables failover for ISP Failure…

[EDIT] I misunderstood how DNS queries to addresses like 8.8.8.8 are routed. They do go through the VPN tunnel. My question -- which I can't seem to delete, so I am rewriting -- had to do with wanting to make the XGS be my DNS server, through an SSL…

Hi All, I'm currently testing migrating from the SSL VPN client to using The Connect Client with ipsec. I've set everything up and can connect without issue. I'm also able to resolve devices within the lan, ping them, access resources but no matter…

Hello all, I have 2 locations (HO & BO) each behind their own XG Firewall. I have created a Site to Site VPN and everything works via IP but not by DNS. The Setup is as follows: All servers are hosted in the HO. There are no servers in the BO. S…

hi. i have XG210 (SFOS 17.5.14 MR-14-1). it is also acting as DHCP server and giving ip to clients.in DHCP i configured DNS server of my local server i.e, domain controller. today i start having issue the i m not able to access the server placed in my…

Hi, I have two WANs connected on my Sophos XG SFOS 18.5.1. The DNS is configured with " Obtain DNS from PPPoE". My Problem now is, that my PhoneSystem is using DNS from the Sophos. But it may only use the DNS from WAN2 and not from WAN1. How…

Hi, i configured some clients in the network to start using the XG as dns server on saturday mid-day. After this you can see the memory usage ramping up, is possible that there is a memory leak? Fw is on SFVH (SFOS 18.5.1 MR-1-Build326)

We have a public wildcard DNS record configured (*.domain.com) so if someone puts in asdf.domain.com, it will still go to our main website www.domain.com. On the Sophos firewall, I have set up many DNS host entries in Network --> DNS, with the idea…

HI, Since myfirewall.co stops working, I would appreciate if you can add the ability to add a custom option. If you cannot add that option, I would appreciate if you can add the entry for my provider joker.com/.../what-is-dynamic-dns-dyndns.html Th…

Hello, We just set up IPsec client VPN. The DHCP pool is 10.81.234.5-10.81.234.55. "Use as default gateway" is unchecked. Originally, we had 8.8.8.8 in the DNS Server 1 field. Secondary DNS field left blank. When we'd connect to the VPN, internet…

I am running the latest XG release and am finding that sometimes DNS resolution is stopping. The Firewall is responsible for DNS requests. The problem tends to go away on its own by just waiting or I can force it by restarting the DNS service. Any suggestions…

I found a few similar questions from different people over the years as to why their XG makes constant DNS lookups to huge amounts of domains with none of the posts having a useful answer. Unfortunately all those threads were locked due to age so I've…

Hello, I have a XG with two interfaces in WAN zone (because I need a gateway for both) in a data center housing scenario. Let's call the interfaces WAN-int and WAN-ext. WAN-ext has a public IP-address and WAN-int has a private IP-address. …

hi all, on the sophos xgs firewall on the diagnostics i can ping 8.8.8.8 but i cant ping google.co.uk under "network > dns" i have added a few dns ips in there but when i go back to diagnostics ping, i type in google.co.uk, ipv4, select my wan interface…

Hello community, Recently i was asked to migrate an existint configuration from a router to XG firewall and here is the scenario : an application running in my local server with the name : transmission.local.co IP@ is 192.168.62.11 DNS serve r…