I have created a new vlan and dhcp on the XGS, configured the vlan on unifi wifi/switches, I am getting ip however I cannot get internet access. I don't want the vlan to access other vlans however I want computers inside the vlan to communicate with…

This was working a month or so ago, but the vendor has just now tried it again and it isn't working. The error is Violation Local_ACL.

Hello. I want to use 1 of the excess LAN ports on the firewall to give out ip address of 192.168.88.x to the pc connected to it. Currently, my firewall gives out ip address in the 192.168.1.x range. I first selected the port, assigned it to the LAN…

We use a block countries rule to control from where our user can connect to the VPN. We noticed two new entrys in the list this morning "Europe" and "Europe Continent" When we take either of them out regardless that Germany is allowed, is Germany…

Hey All, I was wondering has anyone else noticed Netherlands isnt in the country blocking list for Sophos XG ?

Hi all, we moved from LANcom to Sophos XGS SFOS 20.0.2. Fine so far. We migrated last night. Now it comes more and more, that some webclients are unable reach some URLs. Every clients are able to resolve every DNS name. But when putting that DNS…

Hey Folks, while deploying one XGS after another we noticed that Client-IPs in reports e.g. aren't resolved into DNS Names like on our SG/UTM Models. We created a DNS request route: 168.192.in-addr.arpa and domain.local pointing to the internal Windows…

Hello everybody, Hello, I'll explain my case, I have a Sophos XG 106. I have one connected to my LAN pin I virtualized a Windows 11 PC with VMWare Workstation, can I make my virtualized PC benefit from the DHCP that I put on the Lan pin of my Sophos…

Hi guys, I'm trying to create a DNAT rule that uses the ISP from Firewall A for a host that is on Firewall B. The communication between these firewalls is done via SDWAN VPN When testing the NAT, I identified in the packet capture that the traffic is…

Hi, I added some domain names to IP mapping under DNS request route to resolve DNS queries for those domains. The subnets behind these domains are connected through IPsec and are reachable but except one, all other domains are not getting resolved.…

Hey Dears, I have a Sophos firewall version 19, I want to ask if i can deauthenticate an Ip shown in DHCP leased list to force it to obtain new Ip or disconnect it immediately? Thanks

Had a colleague port scan my WAN port after replacing my dead XG230 with a new XG230. I show all these open ports: I did not have this issue with previous fw (my previous config would not load, sadly). What am I missing? Thanks ahead of time…

My Sophos FW XGS2300 port forwording not working for a new port in the past 7days ago, the older port forwording still work normal. Please help me how to check and troubleshoot about this problem. My NAT and rule as pic below. Many thanks for support…

Hi folks, a couple of days ago my network was downgraded/upgraded from 1000/50 to 250/100, all very good. The IP4 address is now static assigned by the RSP DHCP servers. After a number attempts for over an hour and logging a fault with the RSP, investigation…

Hi, Is there a limit to the number of IP aliases per interface?

Good day We have deployed a Sophos firewall on a network, there was a cisco router and we have replaced the cisco router. After deploying the firewall the SAP system is not accessible on the local area network .. We have a SAP server in the LAN…

Do you have an article to help better understand routing on Sophos Firewall? I want my LAN to communicate with my WAN.

Hello everyone, I’ve included my home network diagram and Sophos configuration below. After setting up Sophos Home (on ESXi) in bridge mode with VLANs, I assigned a static IP address of 192.168.11.10 to the bridge port. However, this IP address cannot…

Our company own a sophos firewall xgs ( XGS3300), I try to delete user from 'Authentication' page but it failed, i able to disable the user account, but unable delete the user account. but some account i able to delete. i appreciate if there is…

I am working on migrating functionality from UTM to SFOS on XGS3300 hardware. This organization subscribes to this DNS filtering service: https://www.cisecurity.org/ms-isac/services/mdbr In the UTM, it was easy to bottleneck DNS queries so they are…

I found https://community.sophos.com/sophos-xg-firewall/f/discussions/110856/default-ips-policies/397166?focus=true, didn't help. Sophos pre-packages some IPS policies by default. Without having to go through each of them with a fine toothed comb, is…

static IP 203.122.47.42 on port 84 is showing as closed. We need to bind this static IP to the local IP address 10.0.1.134 . Please assist with this at your earliest convenience. Thank you.

When creating an XML export of FirewallRule via Backup & Firmware -> Import export what is missing in in the XML is the Rule ID. How to get this ID? Or can this be retrieved via API request? greetings, August

I need some help to understand why this firewalls IPv6 gateway is constantly reported as failed. It's XGS126 with SFOS 20.0.1 Because of that Gateway errors I reconfigured it from being an active gateway to a backup failover gateway only. I have…

Does anyone here encounter no access on yahoo even on whitelist? All site is accessible expect for yahoo sites. Anyways I'm doing VPN-WAN rule from XGS107 (SFOS 18.5.2 MR-2-Build380) to XG230 (SFOS 18.5.2 MR-2-Build380).