Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • déblocage solidworks

    bonjour j'ai un xgs 136 qui bloque les mises à jour automatiques de solidworks; si je vais sur le site, télécharge la mise à jour et je l'installe, tout se passe bien. je n'arrive pas à trouver ce qu'il faut débloquer pour les mises à jour automatiques…
  • First time user looking to switch from another product due to it being sold and stripped

    Sophos Firewall is NOT very intuitive so far. Nothing inbound works...but the default rules to let everything outbound does. So figured id ask the community. I've reverted to the simplest test I can think of....Port forward ICMP from WAN to a LAN workstation…
  • XG310 Max number of bridge interfaces

    Hi, In doc.sophos.com/.../index.html i found that a bridge interface can configure from 2 to 64 interfaces, but i don't find how many bridges can i configure. Does anyone know the limit?
  • XG v19.5 IPv6 DNAT not Working? See Below (src-ip = dst-trans-ip)

    2023-11-28 21:19:50Firewallmessageid="00001" log_type="Firewall" log_component="Firewall Rule" log_subtype="Allowed" status="Allow" con_duration="134" fw_rule_id="62" fw_rule_name="DNAT to Spiderman (IPv6)" fw_rule_section="Local rule" nat_rule_id="4…
  • NAT session limitations on SOPHOS

    hi, if i have a firewall with one isp. if i configured port1 as lan and port2 as wAN and configure public ip over it. i configured a Firewall from LAN to WAN, and NAT MASQ rule. then all my users will start going to internet by using port2 IP. my questions…
  • Management Port and Control Centre Status

    Hi. Does anyone know if it's possible to exclude configured network interfaces from the coloured interface status icon on the home page of the firewall? Its purpose is to show at a glance of connectivity problems. However, sometimes it is normal for an…
  • System Traffic NAT

    Dear community I would like to ask a question regarding the system generated traffic. We have founf this article in order to SNAT the system generated traffic: https://support.sophos.com/support/s/article/KB-000035607?language=en_US We have…
  • Wan Port Automatic down of sophos xgs 2100 firewall.

    Wan Port Automatic down of sophos xgs 2100 firewall. what is solution.
  • Sophos Application Traffic Shaping

    Hello Guys, I am trying to configure different traffic shaping rules for the same application category , but I am encountering some difficulties. because only option i see is default traffic shaping for applications. I was wondering if you could kindly…
  • (S)NAT for IPSec Tunnel with a remote network in public IP range

    Hello, I need someone to help me across the road: I have a IPSec Tunnel (networks are just examples): Local network 192.168.100.0 /24 <-> Remote network 192.168.200.0 /24 I have also additional local networks: 192.168.1.0 /24 192.168.2.0 /24 192.168.3…
  • 1:1 SNAT Nat possible with Sophos XG

    Hi, we migrated our SG to an XGS. After this we have the problem that we can not migrate this 1:1 NAT map source rules: www.sult.eu/.../ We use this rules to forware a IPSEC VPN remote network to an XGS headquarter firewall transfer network and from this…
  • Sophos XGS126 Firewall WAN Traffic

    Hi everyone, There is a wan1 and wan2 line on the sophos firewall. Wan1 should work during the day and wan2 at night. How can I do this?
  • XGS2100 RED Full NAT

    Hello, our customer has an XGS 2100 HA installation with currently two REDs. So far it's going very well. Now our customer has taken over three additional locations and would now like to connect these to the internal network with the XGS RED environment…
  • Wireless not working through SFVH firewall

    Hello, So I'm running SFVH (SFOS 19.5.3 MR-3-Build652). The firewall is running on a VP2410 mini PC. My Asus router is 'bridged' to this unit and everthing works fine with one exception: The WiFi on the Asus is somehow being blocked by my Firewall and…
  • Unabel to NAT Remote access VPN IP to internal network IP

    Good Day, Am trying to NAT our Remote Access VPN IPs to internal network IP's without making any changes to the Remote Access VPN. I can change the IP assigned by Remote Access to the users when connecting to the Sophos VPN but don't want to change…
  • WAN port2 has number of public IPs. All work except one!!

    So, I have Port2 and 4 as WAN interfaces. Port 2 is the main interface with multiple public IP addresses assigned to number of services. Life was going just fine until month ago when one public IP address stop working! You can't ping it from outside the…
  • NAT Rule not working

    NAT rule is not working. Tried both ways (DNAT / Firewall+NAT Rule). My WAN interface named BSNL and LAN interface is on Port #8..
  • Can't establish HTTPS connection - INVALID_TRAFFIC

    Hi all, I'm struggling with an issue since few days. I'm using SFOS 19.5.3 MR-3-Build652 and I can't establish a TLS connection between two hosts on different VLAN. I've a firewall rule that allows the hosts to communicate each other, the first…
  • try to open port to CCTV

    Hello guys, Im struggling on this case: I want to open port ( 37777/tcp ) to get acess CCTV from exterior like a phone, tablet or computer. This acess is from Public IP ( WAN ) so i create the service ( print1 ) After that i create firewall…
  • DNAT rule only works for http

    Hi I finally setup my sophos XG 106 I have a WAN/LAN/DMZ and WiFi Zone. WAN use PPPoe Passthrough In the DMZ zone I'm currently running an docker host with some container. I created a DNAT rule to access one of the container running on Port…
  • Managing Data Volume or Gateway Speed on XGS and Sending Email Notifications

    Hello everyone, One of my clients has an XGS Firewall, and their gateway is an LTE router with a SIM card that provides 80 GB of data volume per month. When the data volume is exhausted, the client experiences poor internet speed, making work difficult…
  • Usage oriented Traffic Shaping configuration

    Hi, We got a query from our client regarding Traffic Shaping configuration on the firewall as below, Policy association: Rules Rule type: Guarantee Guarantee – limit: 256 to 6400 KB/s Bandwidth usage type: Individual Please advise on the below…
  • Sophos Firewall Gateway Problem

    Hello everyone, I have a Sophos Firewall behind a Fritzbox 6591. The Fritzbox now serves only as an internet interface. The Sophos is running as a VM on Proxmox and is also set up as an Exposed Host. My issue: The firewall loses its connection to…
  • TWO LAN and ONE Gateway SOHOS Firewall XG115

    How can I share access to the gateway (Sophos XG 115) between TWO LANs with different IP addresses? e.g. lan1 192.168.0.0 lan2 192.168.2.0 where the gateway is ONE on 192.168.2.252 It's possible? Thanks
  • Set an indipendent second WAN interface

    Good morning, I have two clusters of XGS 2100 in HA (Active-Passive) running with the firmware version 19.5.3 MR-3-Build652 . This is my current setup in both of the clusters: WAN1 (ISP) > Port2 LAN > PortF1 HA > PortF2 - PortF2 As per object…