Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • Firewall single Official IP with NAT causes SSLVPN not to work

    Hi everybody, I have done an Update from SFOS 18 to SFOS 19 and since the Update I am not able to connecto to SSLVPN any more. In CLI I can see that all incomming Packets are dropped for SSLVPN when running ( drop-packet-capture "port 1194"). But…
  • When will SSL VPN Users need to re-download configs?

    Hello, we are currently testing 2FA with our XG v 19.0.1 and also some VPN changes. Now every user has to download his personal config file from the user portal so he can connect. Is there a KB or something else where it is written WHICH option(s…
  • Use Remote Access SSL VPN to reach 4 different internal networks

    Hello, We convert the configuration from UTM 135 to XGS 136 and we have one Problem with Remote Access SSL VPN and sNAT. With the UTM we have a C2S SSL VPN for Homeoffice users to the main office (1). The main office has 3 additional S2S connections…
  • SSL VPN Routing Questions

    So I have SSL VPN setup and working. I need to know if there is a way to create specific routes for VPN traffic. We have an internal application that resolves to a Public Range, but our internal router has a route statement to send that instead to an…
  • Sophos XGS SSL-VPN .ovpn files wrong output

    Dear all, We are struggling with the generated .opvn Connection files users can download from the user portal on the WAN ports for VPN we do not know and cannot find it in the online help, how they are created. our setting: XGS 3100 Firewall, Firmware…
  • Access application on local subnet without login through SSL VPN connection

    Did set up a SSL VPN connection (Clients are in the 10.81.0.0/16 range.. Using an iOS device as client and could connect to my network in the 192.168.1.x range. Due to the fact that I'm not on the same subnet the application requires me to login again…
  • Map with Public SSL Certificate with Sophos Firewall Public IP

    Please guide me on how to map SOPHOS Firewall Public IP with Public SSL Certificate. Also, how to access Firewall with a Hostname instead of an IP Address
  • Security Hearbeat over SSL VPN doesn't work

    We have 2 XGS 2300 (HA mode) with firmware 19.0.1 MR365, We tried to configure a rule for ssl vpn user with option "Block client without heartbeat" checked". Rule matchs also for clients wihout endpoint installed. We tried KB-000038254 without luck…
  • Powershell add and remove Users in SSL VPN Policy via API (Enable/disable SSL VPN Policy)

    Hi, I want to to add and remove Users to/from an existing SSL VPN Policy using an API call on the XG via Powershell. I am using SFOS 19.5.0 GA. The API Documentation and some code I've found online are not very helpful. Can anybody tell me how…
  • Add fingerprint remotely

    Hi How to add fingerprint device to server remotely using by sophos vpn
  • o serviço openvpn não está disponível

    Bom dia pessoal Tenho um notebook que tem o Windows 8.1 e ele nao conecta a VPN. Alguem ja passou por isso ? Sabem como resolver ?
  • SSL VPN Connection Report

    With WFH scenarios being commonplace now, how can I generate a report to show when a user connected, how long, and from where? The basic SSL VPN reporting only shows data transfer.
  • Microsoft 365 users migration for SSLVPN authentication

    I have xgs116 appliance and microsoft365 licenses. I would llike to config sslvpn ; with micrososft 365 license authentication to access on premise network. Please help to config
  • Sophos XG 18.5.3 and SSL VPN

    Trying to lab up and describe an upgrade process (outage windows and user impact) for some firewalls. I have 2 XG310s in HA and have done the following: 1. Assigned static LAN and WAN addresses; added LAN2LAN rule (with lan/vpn source to lan/vpn dest…
  • SSLVPN logs no longer showing source IP Address since upgrade from 18.5.4 to 19.0.1

    Hey, since we upgraded from SFOS 18.5.4 to 19.0.1 we can no longer see the source IP a SSL VPN user connected from in the VPN logs. It simply shows nothing or the LAN IP Address of the Firewall in the SSL VPN IP-Range. We only see the real source…
  • Sophos XG v17.5 - SSL VPN wont communicate with Subnet

    Hello, I just moved our servers to Expedient yesterday (subnet 10.137.6.x) and I successfully created the VPN tunnel from our office (subnet 192.168.0.x) to Expedient and everything is working great. My issue is that our SSL VPN users (subnet 10.81…
  • SSL VPN ISSUE Version - SFOS 19.0.1 MR-1-Build365

    SSL VPN ISSUE Version - SFOS 19.0.1 MR-1-Build365 VPN is connected but Issue faced. 1 . SSL VPN Gateway Is reachable. 2 .Network that are in sophos Firewall are reachable (Port-1 -- 192.168.100.1/24 -- Server = 192.168.100.10/24) Interface IP address…
  • VOIP Issue with Sophos SSL VPN

    Dears Good Day. We have CUCM in our company. and internally we use desktop phones plus softphones (Cisco Jabber). without any problem but when we try to use SSL VPN, it's connected and I can reach all servers and files. When I try to use the softphone…
  • DNS request for internal resources

    Hello everyone, I need to get some SSL VPN users to a server with a local URL ("">">http://myurl.local"). The steps I followed: 1) My Xgs2300 has the two domain controllers and google's dns as its dns server 2) Configured a VPN policy only for these users…
  • Add AD User to SSL VPN

    I have my XG set up with both local VPN users and 1 user (mine) authenticating via AD. I've imported the AD OU named Staff where this 1 user resides. I have a new employee coming on, so I created his domain account in the Staff OU. I then logged into…
  • Mac Sophos Connect can't import SSL VPN Config File

    I am trying to get a client connected on the SOPHOS connect but every time I try to import the files I get an error. Can anyone please assist me in trying to fix this issue with the ovpn import file. Thanks
  • Site to Site SSL VPN cannot connect with another LAN

    Hello Expert, I've issue with Site to Site SSL VPN to connected with another LAN (File Share Server). I've tried many times to connect with the server but not success. My issue is PC2 cannot access (ping/trace route) with the File Share Server (ip…
  • SSL VPN on Sophos Firewall with Root CA + Intermediate CA

    So, I have an internal CA that I use for everything on my network. This CA also handles the VPN components that I use. Namely, I have a root CA and multiple intermediate CAs underneath for different use cases - one is for SSL Client Auth (so SSL cert…
  • SSL VPN / no internet Access after 15 Min

    XG firmware: SFOS 19.0.1 MR-1-Build365 Hello, Internet access in the SSL VPN full tunnel breaks off after about 15 minutes during use. Only the firewall management page can be accessed. Internal servers or IPs cannot be reached! Nothing can be seen…
  • Sophos XG Remote VPN Feedback

    Hello all, I would like to express my displeasure here which I hope will be heard as feedback regarding the remote VPN functionality in the XG which I noticed during the migration from the SG/UTM to the XG and which creates problems for us to find a…