Hi guys, How to write custom IPS signatures for blocking applications? I have found a few VPNs which are not on the application control list and I would like to block them. Regards

Helo I realy dont know how sophos still dont have an TikTok App Control. This app its terrible for productivity and bandwidth. Can you please add TikTok to Application Control? How can i block this app?

So, while setting up IPS on the system, I want to *block* the usual badness including scanners, etc. However, I have regular vulnerability scanning done by US DHS/CISA as part of their Cyber Hygeine program, and they scan regularly. As such, using scanner…

Hi, Im starting to get "SCAN Zgrab Scanning Attempt Detected" alerts, I understand who would use these, however how do I stop the alerts as they are ~+ Im sure

Good day I have a challenge with blocking youtube. Initially the rule was working fine and all of the sudden users are able to access youtube. i can block other site but youtube keeps working. i have just upgraded the sophos firmware to SFOS 19…

Dear Team, As we checked and tried to deny some adult-containing sites on Sophos firewall, with the help of a website, we were able to deny that website, but in the application category, we were not observing any adult-related application, so kindly check…

Hi, In lan network some user need wetranfer access but due to data privacy we dont give to share data upload access only download access so kindly give solution to resolve. model-XG210 version-18.5.4 Thanks Satya

Hi, How do I report application traffic that is incorrectly identified - The below is being reported as personal network storage, when it's for iCloud private relay, and should therefore (I would ahve thought) be classified under proxy services…

BACKGROUD From FW version: Version 18.5 MR3 Build 408 - Application filter "Facebook Video Playback" is working properly. This means that in my organization Facebook is allowed to access but playing any videos within Facebook is not. ISSUE After upgrading…

Hi guys, I am unable to block the Hoxx VPN extension on firefox. I followed the Application filter recommended settings for better application detection ( https://soph.so/WtpQzU ). The application uses port 80/443 for VPN servers. Sophos XGS is unable…

Hi guys, I was testing if users could bypass the network restrictions using ShadowSocks. I created a server in Vultr and configured the Socks5 server. On the client side, I configured the Socks5 client. Added it has a proxy in Firefox. I am able to…

HI, I have the XGS126 and it's running the latest firmware 19.0, was trying to block Instagram app, so need some assistance as I created the application filter contacting streaming media category and linked it to a policy, yet the app is still workin…

HI All Currently i am facing a issue with zoom application. This happens my xg210 firewall all of sudden rebooted to factory default condition and then restore to old backup. but after this incident my zoom application reboot automatically during…

Hi, one of our customer was trying to browse "https:// apex.irclass.org :82 " but failed. I have allowed the fqdn and found nothing wrong logs in web filtering and application control logs. When i removed the application control, start getting the…

Hi folks, zendesk was classified as unsanctioned on my XG due to one IoT device continually incorrectly calling a zendesk site. Tonight I tried to correct the classification so that the Sophos Home Premium support pages would work, but receive the…

Hi guys, I have been trying to block the hotspot shield and Betternet VPN. I have included them in the Applications Filter. I created a support ticket with Sophos and we were able to block the said applications by decrypting HTTPS using web proxy…

I'm noticing that when I do reports or look at live connections, I see a lot of STUN traffic. And it's a LOT of traffic, which is puzzling in that I thought STUN was merely a tool to figure out how to get a direct connection when that would otherwise…

Hi , is there any Option to block nordVPN , wasn't able to find any option in the Application Control . For the most shady VPN Provider are blocking options available. We highly need to block any kind of shady VPN ´ s specally nordVPN ! We are…

need to block google play app via application control in Sophos XG firewall as i couldn't find it in the application filter

Is there a way to prevent home users to use VPN Client on the own devices? We would like to allow only Domain Computers or generate a certificate to restring user's devices. Unfortnately, I don't have Sophos Central InterceptX to use Heartbeat status…

We've replaced a SG by XGS 18.5 MR3 and there is now massive false positive detection of Torrent Client P2P traffic by application filter. Most firewall rules for internal traffic have the default Application filter applied: "Block high risk (Risk Level…

Found a conversation here about the same problem 6 month ago, but I can't read a solution. My firewall is reporting a lot of Torrent P2P users in my network and block the application. In the same time users reports that they can't read mail on iPhone…

Hello, noticed that VPN programs bypass Sophos blocks. I would like to know if there is any common denominator among all VPN programs, so that I can create a firewall rule preventing all these VPN programs from connecting. Thanks!

According to the logs its being blocked 2022-01-20 20:19:34 Invalid Traffic Denied N/A 0 192.168.1.181 54.239.35.235 54058 443 …

The following syslog is showing application "Torrent Clients P2P" for all of our IPSec Tunnel Interface traffic. This traffic between our IPSec and internal server is not Torrent traffic. How do I reclassify this properly in the Sophos XG V18? date…