When setting up ipsec tunnels between various xgs we see an issue where if using tunnel interfaces with traffic selectors we cannot access the admin 4444 page from another office. SSH and ping work fine so the routes are working . If we use site to site…

Hi folks, due to a little accident I added https to a drop firewall rule, that stopped the vpn from working and also all other devices using https on that network. I was connected to the GUI at the time and lost the connection. Why did the connection…

Hi all, I noticed that after upgrading to the newest firmware (19.0), I cannot access the device from WAN. Neither the user portal, not the admin portal, even though they are enabled in the administration - device access. Anyone noticed similar problem…

on the XGS2100 there is e new Hardware PortMGMT interface Default setting is enabled IP 10.0.1.1 Network zone: LAN Everyone in LAN can reach this IP? Interface is not used and that is also why Control Center always shows "warning" for your interfaces…

i had sophos xg v 19 iwant to block someusers to acces the portal of the FW :4444 also i want them to access the gateways of aps/routers how can i do that?

Dear all, I have a question, due to any reason I am not anymore able to get access to my xg firewall through LAN-IP I have try to get access through WAN but it's not accessible, is there any way to get access to the Sophos firewall? Regards …

Hi Community, From a vulnerability management scan the result on the XG was port 4444 (web admin interface) was TLS v1.1 enabled. I could not find how to disable this, anyone have an idea? Regards, Peter

Hello everyone, I want no external entities can access the default admin account remotely either via VPN or WAN. Has this been implemented by default or do I have to change the settings ? Thank you in advance.

In addition to our Sophos XG which is the default gateway (.254) we've got a router provided by one of our vendors on the network for their traffic only (.253). We've created a static route to forward all traffic for their sites and applications back…

Hi, I had IPSEC S2S configured wherein SSH to remote site Sophos was working fine? Recently I have configured IPSEC RBVPN and if I try to SSH remote Sophos it does not allow me to access. IPSEC RBVPN working absolutely fine. If I try to access SSH…

I have a Sophos XG-230 Firewall I need to reset to factory and reconfigure. Sophos documentation states the reset button does not actually reset the device to factory, and my testing shows the same. Gaining access to the device by IP is not possible because…

Manage port has failed and i cannot access to remote into XG can someone list the command needed to switch from port 1 to port 3 in at the console thank you

Hi, I wish to reduce the size of the virtual disks, so I am building a new appliance and importing/restoring the config from the existing appliance. I am deploying a new NVA from Sophos's OVF file. Everything goes ok, until I try and log in to the virtual…

Just happened to read something interesting on Reddit about Sophos's effort to differentiate the (free) Home version versus the Business version of Sophos XG starting from v19: Did Sophos discuss or write anything about this in any posts or changelogs…

How do I grant this access to accounts OTHER than the ADMIN local account? Other local administrator accounts have been created (not tied to AD/LDAP) - they have been granted an Administrator profile: However, I cannot find any way to grant the…

Hello, how to give a name (ex: mysophos.fw) to sophos XG firewall and use that name to access firewall from WAN instead of using WAN IP x.x.x.x:4444 ? regards Anand

Hi all, firewall already uses a wildcard cert for WAF, I tried to set it up for "Admin console and end-user interaction" as it is called in the Admin settings. Applying the cert resultet in not being able to reach the Webadmin and Userportal, neither…

Hi, I want to know as to how to access XG after disabling WAN HTTPs. If I want to access remotely and I do not have VPN likewise how can I access it on WAN using HTTPs. Is there any way out to be secure and access it over WAN ?

I can login to XG with my administrator account (which uses AD and DUO 2FA) but recently had an issue where I needed to use the admin account and found it didn't work. I don't usually use admin login so I'm not sure when this broke. The password is…

Hi, Since, for some reason, I'm not being able to access my Sophos XGS appliance trough a webadmin or ssh conection, I'm trying to access the device with a serial connection with a console cable. I've followed this procediture: https://support…

Hi, We have a Sophos XGS appliance. After a reboot it has been stuck showing this message with a blue background on the browser everytime I try to access to the web admin console: "Firewall is starting. Please stand by while the system finishes loading…

Hello, how can I change my admin password if I still have access to central and don't know the old password due to some cut & paste issues? Regards BeEf

Hi everyone, This is the ACL matrix of Sophos XG v18 firewall system. Would you please explain to me in more details about the rows and columns of this ? I would like to know more in partiular about the SSL VPN column : If I uncheck the SSL…

Hello everyone, How can I change the SSH port number on Sophos XG (Home) v18 ? This has been a much debated feature request for some time now. Has it been implemented yet ? If so, how to do it ? Thank you in advance.

I have connected the XG to the domain and my domain user can log into the user portal fine. When I try to log into the admin portal I get " User XXXXX failed to login to Web Admin Console because of wrong credentials " I have made sure the user is set…