Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • Wan Port Automatic down of sophos xgs 2100 firewall.

    Wan Port Automatic down of sophos xgs 2100 firewall. what is solution.
  • Problem with download speed

    Hey, I have Sophos Firewall for Home installed on my proxmox. I have a 500Mb/s download and 100Mb/s upload connection. Unfortunately when downloading anything from the internet the maximum speed I can download at is 20MB/s it gets to that 20 and is unable…
  • Connection between Unifi Dream Machine and Sophos XG Home for dynamic traffic filtering.

    Hi All, I would like to connect my Unifi Dream Machina Pro (UDMP) router to Sophos XG Home (SFOS 19.5.3 MR-3) installed on a separate computer with two LAN ports. What I want to do is not obvious and I don't know if it's even possible. In general, the…
  • Sophos Application Traffic Shaping

    Hello Guys, I am trying to configure different traffic shaping rules for the same application category , but I am encountering some difficulties. because only option i see is default traffic shaping for applications. I was wondering if you could kindly…
  • (S)NAT for IPSec Tunnel with a remote network in public IP range

    Hello, I need someone to help me across the road: I have a IPSec Tunnel (networks are just examples): Local network 192.168.100.0 /24 <-> Remote network 192.168.200.0 /24 I have also additional local networks: 192.168.1.0 /24 192.168.2.0 /24 192.168.3…
  • 1:1 SNAT Nat possible with Sophos XG

    Hi, we migrated our SG to an XGS. After this we have the problem that we can not migrate this 1:1 NAT map source rules: www.sult.eu/.../ We use this rules to forware a IPSEC VPN remote network to an XGS headquarter firewall transfer network and from this…
  • Sophos XGS126 Firewall WAN Traffic

    Hi everyone, There is a wan1 and wan2 line on the sophos firewall. Wan1 should work during the day and wan2 at night. How can I do this?
  • XGS2100 RED Full NAT

    Hello, our customer has an XGS 2100 HA installation with currently two REDs. So far it's going very well. Now our customer has taken over three additional locations and would now like to connect these to the internal network with the XGS RED environment…
  • Wireless not working through SFVH firewall

    Hello, So I'm running SFVH (SFOS 19.5.3 MR-3-Build652). The firewall is running on a VP2410 mini PC. My Asus router is 'bridged' to this unit and everthing works fine with one exception: The WiFi on the Asus is somehow being blocked by my Firewall and…
  • Unabel to NAT Remote access VPN IP to internal network IP

    Good Day, Am trying to NAT our Remote Access VPN IPs to internal network IP's without making any changes to the Remote Access VPN. I can change the IP assigned by Remote Access to the users when connecting to the Sophos VPN but don't want to change…
  • WAN port2 has number of public IPs. All work except one!!

    So, I have Port2 and 4 as WAN interfaces. Port 2 is the main interface with multiple public IP addresses assigned to number of services. Life was going just fine until month ago when one public IP address stop working! You can't ping it from outside the…
  • NAT Rule not working

    NAT rule is not working. Tried both ways (DNAT / Firewall+NAT Rule). My WAN interface named BSNL and LAN interface is on Port #8..
  • Route all Netflix traffic through VPN

    Hello, Hoping I can get some help - tried searching but its still not 100% clear to me so hopefully someone can provide some insight. LAN > multiple ports , 1 feeding a linux box which has my server that handles things like plex etc AP device > feeds…
  • Can't establish HTTPS connection - INVALID_TRAFFIC

    Hi all, I'm struggling with an issue since few days. I'm using SFOS 19.5.3 MR-3-Build652 and I can't establish a TLS connection between two hosts on different VLAN. I've a firewall rule that allows the hosts to communicate each other, the first…
  • try to open port to CCTV

    Hello guys, Im struggling on this case: I want to open port ( 37777/tcp ) to get acess CCTV from exterior like a phone, tablet or computer. This acess is from Public IP ( WAN ) so i create the service ( print1 ) After that i create firewall…
  • DNAT rule only works for http

    Hi I finally setup my sophos XG 106 I have a WAN/LAN/DMZ and WiFi Zone. WAN use PPPoe Passthrough In the DMZ zone I'm currently running an docker host with some container. I created a DNAT rule to access one of the container running on Port…
  • QoS question

    Hello guys! I attempted to mess around with Traffic shaping settings and something seems off. Perhaps I am misunderstanding something so I thought I should ask For starters my internet connection is slow. I actually have two internet lines, one goes…
  • Managing Data Volume or Gateway Speed on XGS and Sending Email Notifications

    Hello everyone, One of my clients has an XGS Firewall, and their gateway is an LTE router with a SIM card that provides 80 GB of data volume per month. When the data volume is exhausted, the client experiences poor internet speed, making work difficult…
  • Usage oriented Traffic Shaping configuration

    Hi, We got a query from our client regarding Traffic Shaping configuration on the firewall as below, Policy association: Rules Rule type: Guarantee Guarantee – limit: 256 to 6400 KB/s Bandwidth usage type: Individual Please advise on the below…
  • Sophos Firewall Gateway Problem

    Hello everyone, I have a Sophos Firewall behind a Fritzbox 6591. The Fritzbox now serves only as an internet interface. The Sophos is running as a VM on Proxmox and is also set up as an Exposed Host. My issue: The firewall loses its connection to…
  • TWO LAN and ONE Gateway SOHOS Firewall XG115

    How can I share access to the gateway (Sophos XG 115) between TWO LANs with different IP addresses? e.g. lan1 192.168.0.0 lan2 192.168.2.0 where the gateway is ONE on 192.168.2.252 It's possible? Thanks
  • Set an indipendent second WAN interface

    Good morning, I have two clusters of XGS 2100 in HA (Active-Passive) running with the firmware version 19.5.3 MR-3-Build652 . This is my current setup in both of the clusters: WAN1 (ISP) > Port2 LAN > PortF1 HA > PortF2 - PortF2 As per object…
  • Block DMZ traffic when in WAN failover mode

    Hello. Wondering how to block DMZ traffic when in WAN failover mode? Have a cable internet connection as primary/active WAN and a DSL connection as backup/failover. Would like to automatically block all DMZ traffic when the primary interface goes down…
  • Regras para nao permitir acesso a internet

    Bom dia a todos. Alguem sabe se é possivel criar uma regra para nao permitir que alguns dispositivos acessem a internet somente consigam acessar a rede interna da empresa. Estou pensando em pegar os dispositivos pelo MAC e criar a regra para que…
  • ROUTE MODE TO BRIDGE MODE

    Please i started by configuring in route mode instead of bridge mode. Please how can i change this to bridge mode without resetting .