Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • New Setup XG 16.5 - Local DNS/Name Resolution Not Working

    I'm very new to the Sophos ecosystem, took the plunge two weeks ago & setup XG Firewall 16.5 in a virtual environment but need some help filling the gaps. At the moment, I have a very basic setup with the device LAN port connected to a switch that everything…
  • Sophos RED löst nur vollqualifizierten Namen auf. DNS?

    Hallo, ich habe eine kurze Frage; Wir haben eine RED installiert, über diese RED kann ich zwar Server über IP und Servername.Domäne.local erreichen, aber nicht über Servername. Es scheint ein DNS Problem zu sein. Hat jemand eine Idee, wo ich…
  • dnsmasq vulnerabilities (CVE-2017-14491)

    A vulnerability was recently released that targets dnsmasq. Our auto updating ubuntu servers all patched themselves. Is our XG firewall vulnerable to this exploit? If so, is there an ETA on a firmware update? Thanks.
  • DNAT im internen Netzwerk

    Hallo Zusammen, ich versuche gerade einen Navision-Server erreichbar zu machen. Interne Adresse: 192.168.100.178:8080/.../ Auf dem Webserver habe ich die Default Site auf diese URL umgeleitet. Der Dienst soll über nav.Domain.de erreichbar sein. …
  • Can I setup DNS entries when making a static entry?

    When I go to add a static entry, I see the 'hostname' field. I entry a value, for example, server.local.lan. In my DHCP setup I have 'lan.local' setup. However when I go to visit server.local.lan, it does not resolve. The only way it works is if I…
  • Cant resolve site from internal LAN.

    Hi all, I have a XG210 in gateway mode. Also I have a server with a site (100.100.100.4) in it and an internal DNS server (100.100.100.2) to publish the site. I can see the site from the internet but not from the internal LAN. I have a DNAT rule…
  • DNS von RED dauert lange

    Einer unserer Kunden verwendet eine Menge REDs, die an eine UTM angebunden sind. Nun soll in den Filialen hinter den REDs nur eine einzige Internetseite aufrufbar sein. ( portal.infoniqa-services.de:9003/.../hcmLogon) Das Funktioniert auch soweit, nur…
  • Traffic from LAN not redirected to WAN

    Hi everybody, I just instaled a sophos xg 115 firewall and i cannot Access to internet. I connected firewall's port 2 (WAN) with ip 192.168.1.2/24 to my Movistar Router (ip 192.168.1.1/24), and then i created a LAN in port 4 with ip 192.168.75…
  • Log DNS Queries

    Hi, I have XG Firewall SFOS 16.05.5 MR-5. I want to intercept all DNS queries and extract FQDN from them. I know it can be logged from CLI something like "sudo tcpdump -vvv -s 0 -l -n port 53". Is it possible to do that from GUI? If not how can…
  • Intermittency Issue - Gateway unable to resolve DNS queries

    Problem Primary Issue: XG device is consistently having intermittent DNS resolution issues. Secondary Issue: XG device as DNS server is unreliable. Backgound & Symptoms SFOS 16.05.5 MR-5 This DNS issue as come out of this other issue where…
  • XG105w http error 502 bad gateway from vlan to vlan

    Hello, I got a weird issue with my XG105w: I have set up several VLans as follows: Vlan1: 192.168.16.0/24 Vlan10: 192.168.10.0/24 Vlan20: 172.16.16.0/24 Vlan30: 10.16.16.0 / 24 Vlan40: 10.0.0.0/24 My local servers (domain controller active…
  • XG DNS resolution error

    Hi, i have a problem with DNS resolution on my XG 115, but i think it's a setting mistake. VLAN 1: Client1 - IP 192.168.10.10 DNS: 192.168.10.1 VLAN 2: Client2 - IP 192.168.20.10 DNS: 192.168.20.10 FW Rule: ICMP, DNS, RDP allowed…
  • clients on LAN cannot resolve local DNS names

    Hello all, Im new here and I've been giving Sophos a try to replace my Sonicwall but Im having a very warm time. I have my XG setup in gateway mode, my LAN is 10.0.168.1 and is acting as my DHCP and DNS server. I have a number of clients 68.2, 68.3…
  • look up ip from hostname on firewalls dns server

    I have a question here. i used to be able to do reverse dns lookups from my router when it was the dns server for my clients but now i have installed a Sophos Firewall XG home edition and disabled the dhcp server on the router i cant do lookups anymore…
  • DNS multiple host records

    I have an internal web server that hosts multiple sites. When I create an additional host record in DNS for the same IP address the XG tells me: "Failed to add/update DNS Host Entry. Identical configuration 'name.domain.com' already exists". How do…
  • Can the DHCP server register a name/address in DNS?

    Is there a way to get the XG firewall to register an address in DNS when it assigns it to a host in DHCP? For example, on my Windows A/D at work, when a computer (or phone, or whatever) gets a DHCP address, it tells DNS to add a record so I can ping my…
  • After a backup/restore to a new hardware, Sophos DDNS name appears as already taken

    The hardware that XG Firewall 16.05GA was installed unfortunately stopped working so I needed to move to another software appliance. Backup/restore process worked well so far but I have seen that the Sophos dyndns name that I was using before appears…
  • Freshclam not working when using DNS services on v16

    Ever since I upgraded to v16 I get the following errors when running freshclam: # freshclam ClamAV update process started at Sun Dec 18 09:24:38 2016 main.cvd is up to date (version: 57, sigs: 4218790, f-level: 60, builder: amishhammer) WARNING: getpatch…
  • DNS Hostname Issue

    So, I have an XG125 that has small network of machines on the LAN port, all fine there. I am currently attempting to set up an Active Directory server on a spare box, which I think I have set up fine, the box has it's own static IP provided via the…
  • vpn dns not working

    I have created an L2TP connection. the connection is being made and the user is authenticating. After connecting, I can ping internal and internet resources by address. I can ping internet resources by name, but not internal. I have added…
  • External DNS Query IssueDNS

    Hi, I have a cPanel Server with Bind Name Server behind the firewall with many hosting domains inside, websites, emails, ftp, etc. All services work correctly doing NAT with the required ports. The only problem is the DNS server (BIND). I do NAT of…
  • [Application Filter] Google DNS registered risk level 5 (Torrent Clients P2P)

    SFOS 16.01.0 Application Filter blocked DNS Forwarding my DNS Server. Torrent Clients? Maybe something is wrong?
  • RE: Internal DNS issues

    We have a very big problem... i need pass the DNS Queries to my internal Nameserver (ns2.ardanet-systems.com) i tryed anything but i can't get this. The queries can't pass WAN... This is because i has behind the XG a Webhosting (cPanel & Nameserver…
  • VLAN N/A not connected Help

    Cisco small business L3 switch Sophos XG fresh new install with default setup rules Do anyone have vlan working on XG that can show me how they have it setup and what settings i might have to change on the xg to get it working. I am unable to get vlan…
  • RE: VPN and dynamic IP

    Thanks for the reply. I do already have that configured and it works fine however that setting does not get transferred to the VPN client you download and install from the portal. It configures itself as an IP which renders it unusable if you are on the…