Hi, I want some local DNS servers to do DNS over TLS (DoT) and have configured them accordingly. I created a rule allowing TCP 853 for those hosts - both IPv4 and IPv6. Because of IPv6 is assigned via PD I used the client MAC address (on local LAN…

hi, if I scan the WAN IP from my Sophos Firewall, i can see open Ports, like: PORT STATE SERVICE 21/tcp open ftp 22/tcp filtered ssh 23/tcp filtered telnet 25/tcp filtered smtp 53/tcp filtered domain 80/tcp open http 110/tcp filtered pop3 111/tcp…

Hello All, Using Sophos XG310 Firmware 18.5.4 MR-4 Build 418 I have an unusual issue, essentially all workstations on the LAN of the Sophos Firewall are unable to access play.google.com Originally it appeared to be due to perhaps Web Filtering or…

hello configuring DHCP lease on XGS 107 firewall in "DNS server" section there is only 2 fields, is there a way to have the DHCP provide 3 DNS to clients Thanks Elie

Hello everyone, I'm testing the following configuration: ISP modem home network - > Sophos XG in router mode - > UDM-SE I've a number a VLANs configured on UDM and Sophos and everything communicates fine. My current configuration has all…

Dear Team, We have to add two interface as a bridge - like A1 and A2 with sub interfaces (Vlan interface). Below are the configuration steps which I had created yesterday for bridge interfaces- 1. Created Zone (Common ZONE) 2. having created…

Hello, My GPON ONT converter device is one without the DHCP mode (static IP 192.168.50.x). Once I have connected my Sophos XG firewall device with it for a successful PPPoE dial-up, I can no longer access it by assigning a static IP of 192.168.50.y…

I am using sophos xg430 firewall. I have noticed a strange behaviour that when a new interface is added, the adjacent interfaces becomes unresponsive. Either we have to wait for almost 10 hours to have the interface to respond/we need to reboot the firewall…

Hello, I've Sophos XG installed in between ISP modem and router. The XG in bridge mode with LAN and WAN bridged together. The router and LAN all have internet access. However, Sophos XG doesn't - what I mean by that I can't update firmware for instance…

Hi all, Wondering if there is a way to set dhcp via cli? Or what the best way to change the main interface IP without losing connection? My issue is everytime I change the IP of the Port1, I expectedly lose connection. Trouble is that I cannot…

Hi everyone, I set my Firewall Wan Port to 1000 mbps Full-Duplex with Auto-negotiated enabled. I thought the solution was to set the WAN bandwidth to 1000 Half-Duplex but there is no option (only 10 HD, 10FD, 100 HD, 100 FD and 1000 FD) My Modem (Vodafone…

Good day, Currently we are doing network discovery, and we found that the whole subnet are answering to the ping discovery which is weird. Upon checking, the ip addresses that are not assigned are replying via port tcp 25. When we telnet it the "220…

This issue is annoying us for years and happened today again after one year of being working. XG 430 with lag and SFOS 19.5.3 XG has several VLAN. On one VLAN a Windows DHCP Server is serving DHCP addresses. On several other VLAN configured also…

Hello everyone, I need assistance in configuring the internet connection with a real IP entering through WAN on port 1 and going out as a real IP on port 2, while distributing it as a local IP. Please help me with this.

Hello dear community! I would like to clarify few dummy things. During configuring my terminal station into firewall router (steps as per 'tutorial': https://www.youtube.com/watch?v=YGR9_kmPlig&t=451s ) I've encountered issue as was unable to connect…

Hi community, I would like to configure my Sophos firewall with IPv6 WAN and LAN. My ISP has provided me with the addresses for this, and I have had a go at getting this to work but with no luck so wondering if someone can help me please. I am using…

I've seen posts in this forum saying that the Interfaces page in the GUI has a "Renew" button, which can be used for the WAN interface to obtain a new IP address via DHCP. Where is this "Renew" button located? I checked the Interfaces page and the…

Hi; I want to do monitoring from snmp service but I don't want to open snmp service to the all world , I only want to allow snmp to the specific ip adress. for this process; I am going to system -> administration -> snmp and activated the snmp service…

Has anyone successfully set up netboot.xyz with a Sophos firewall? If so, could you please explain how to configure Option 66? Thanks in advance.

hello. Sorry for my poor English. I was thinking of connecting LAN cables to multiple ports of the XGS136 to create one LAN like a regular router. ex) port1=WAN port2~port10=192.168.10.1~192.168.10.255 Assign default gateway 192.168.10.1 to…

Hi All! Please let me know the best solution for the below situation. If I have 20Mbps, What's the best type of Traffic shaper to create for VLAN(50 users) maximum per ip 3Mbps. But 20Mbps for the whole VLAN.

I have Sophos Firewall v20 GA. In Network-->DHCP, the IPv4 lease table is empty, showing no IP leases despite several devices having dynamic IP addresses. BUG: IPv4 IP leases not appearing in the lease table.

Hello, My main network is 172.16.x.x and I have a VPN network using 192.168.x.x. The two networks don't 'talk' to one another but I would like to change that through the use of a VLAN. First off, is that even possible to where I can access either…

The firewall's DHCP No dynamic ip relays from DHCP server. Sometimes the web logging page of the firewall hangs.

When forwarding DNS to servers like 1.1.1.1 or 8.8.8.8, is it possible to do so using DoH?