Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • Invalid TCP state.

    Have three static routes for the LAN network. We can ping from the the IP that is in the static route system but we cannot HTTPs or any other application. We get an Invalid TCP state but than other times it shows as being allowed. We have a firewall rule…
  • LAN-to-LAN traffic not working

    Hello all, I have two networks in our LAN zone: 10.0.180.0/24 10.2.180.0/24 Here is the interface config: We have a LAN-to-LAN rule that I would assume should allow traffic between hosts on either network: From either network…
  • View interface bandwidth (upload/download) in real time

    hello we have Sophos XG with sfos 18.5. interface 5 is wan ( we have internet speed 100 Mbps download /100 Mbps upload) how to monitor the actual current bandwidth used down/upload on this interface for example : at this moment ( bandwidth is 65…
  • 3 LAN 1 gateway

    I have Sophos XG 210 At present my LAN gateway is 192.168.1.1 Now I want to add another two LAN 192.168.2.1 & 192.168.3.1. But gateway is fixed 192.168.1.1 Please guide me step by step configuration procedure.
  • SIP ISSABEL VOIP outbound Call issue with Multiple WAN

    Dear Team, i face issue in SOPHOS XG Firewall V18. ISSABEL VOIP outbound call not working with Multiple WAN, everything are working fine with Multiple WAN, only Outbound call are not working in my ISSABEL server inbound working as well, when inbound…
  • XGS116 and Vodafone leased line

    We have an XGS116 and a new leased line connection over Vodafone (500/1Gb) we have minimal config interface but when vodafone line is connected to the firewall there is no activity but if we connect a laptop direct with the same config we get a connection…
  • Phantom WAN traffic showing in SOPHOS XG

    Hi, I am getting Phantom traffic from WAN to WAN in XG firewall even if the LAN Port is disconnected and no AF or DNAT rule is there for webserver. No Webserver is present there. After implementing WAN to all Interfaces Block policy the traffic dropped…
  • Add LAN/WAN Pool

    Hello, Our ISP has given us a /30 IP for WAN and a /29 Pool of IP for LAN, I have configured the WAN IP but am unable to use /29 pool. I have assigned the /29 pool on a new interface but struggling to get it working. Please advise how to proceed.…
  • Sophos XG(Software) - Not internet access when WAN IP address changed.

    I was staging a Sophos XG(Software) using an internal network. Everything was working fine. However, when I change the WAN to a 4G modem with static IP and passthrough, I was unable to access the internet from the LAN or other subnet. WAN IP was correct…
  • Configure two WAN for two LAN

    Please guide i need to configure two WAN for two different LAN as shown below. As two applications are configured, one is working in one part and another is working in second part. Please guide for configure in Sophos XG210.
  • Two WAN interfaces for single DYNDNS entry.

    Hello I was wondering if there is anyway on the Sophos XG to configure 2 WAN interfaces for a single DYNDNS entry. I am currently in a situation where one of our venders has a specific bit of gear that stops working if/when our main ISP feed goes…
  • SFOS 18.5.2 MR2-Build380 pppoe problems

    hello our current sfos is SFOS 18.5.1 MR-1-Build326 , and we have 3 WAN [PPPoE (DSL)] , everything works perfect and all WANs connected successfully. But I downloaded SFOS 18.5.2 MR2-Build380 update (from id.sophos.com) and upgrade manually, when…
  • Sophos WAN problem

    I am trying to setup Sophos and I am having some problem with the WAN. The LAN come in my server in a port and I am trying to use the second port as a WAN to go out in my switch. Sophos says my port2 is active but the status is RED and the gateway is…
  • Sophos XG SFOS 17.5.15 : Moving WAN from one interface to another

    hello I want to move my WAN from interface to another without manually reconfigure firewall rules. is that possible? thanks
  • Mirror my traffic on the wan port to a unused NIC on the Qotom computer - can I just let the XG stay in discover mode?

    Hi, I have installed Sophos on a qotom computer. It comes with 8 nics. Now - I'm looking a ZyXEL to get a complete 2,5gbe ethernet network in my house, however, their switch lacks span/mirror possibility. I would like to have it since I feed all the…
  • Multiple WAN Ports Same ISP 2 different subnets

    I have just one internet service provider. From this ISP I have 2 blocks of public IP addresses, which means 2 different gateway addresses. On the XG firewall I ended up creating 2 WAN interfaces - one for each Public block of IPs where one IP from…
  • Sophos XG and Airtel FTTH with static IP address

    Hello, I am working with a customer and facing a strange issue. They have 2 ISP links: Leased Line - Vendor One OTT - Static IP - works absolutely fine FTTH - Airtel - Static IP - works fine with Sophos WAN interface set to DHCP, however face issues…
  • Sopho xg and utm additional interface

    How to create additional interfaces on sopho xg like utm? I cannot find additional interface option on sopho xg. And can i get the same services like server load balancing setting in sopho xg like utm?
  • I can't get connect the LAN interface to the internet

    I have installed Sophos XG in the VMware Workstation (yes, its not in the production network) and gave that two network adapters like this: VMnet0(Bridged) : 192.168.1.20/24 (Internet) -> NATed with Wireless modem router VMnet1(Host only) : 192.168…
  • Configuring Sophos XG136 Firewall port for connecting switches.

    We have 40 Srvers and we want all the users to connect the servers through XG-136. We have 40 Switches out of which 4 are connected to servers. All of these switches which are connected to servers I want to connect them to North End of the Firewall and…
  • interfaces shows NA for VLANS only

    hi all, under "network > interfaces", when i add a "vlan" ie give it an ip/subnet/vlan tag no etc and bind it to a physical port i can see it under vlans page when i go back under "interfaces" it just says connected but NA under the ip details, why…