Hello Team, We are using the Sophose XG firewall, I would like to raise the concern regarding WAN Ports are not working, can you please help on it

Hi guys, We have been deploying a firewall policy for a few months now and have noticed that there are a few customer firewalls that are unable to deploy the configuration. They all appear to be getting a similar error to the one pictured below. Can…

hi all, we have a xgs 4300 v20 i want to give a new ip/host the same rule sets as an existing ip/host how can i do this please? thanks, rob

I have a handful of domains and one of them is resolving to the Sophos VPN page instead of the appropriate server. I just added a new internet connection and correlated IP to DNS. What am I missing

Hi community, I'm trying to connect two different Subnets. This is the environment: Subnet A 192.168.1.0 /24 Gateway: 192.168.1.1 Port 4: Company with DHCP address 192.168.1.55 Device: FritzBox Subnet B 10.0.100.0 /24 Gateway 10.0.100.1 Port…

Hi, Any advice would be appreciated for the following please. We have a number of devices that have been configured to communicate with an internal server by IP address. This server is now being migrated to the cloud on a unique subnet. We are not…

Dear All, I have observed a strange behaviour from Sophos XGS3100 firewall. My LAN network is 172.20.52.0/23 network. When I connect the Sophos firewall to my LAN, the Firewall gets an IP 172.20.52.145/23. After that I cannot ping or access the interface…

Hi everyone, Firstly let me explain the setup i have for my home network Have WAN plugged into a mini PC which runs Sophos XG. On Interface 4 of Mini PC i have plugged in ubiquiti AP from which other devices get wifi connection ( mobile phone , laptop…

Hi, I read this forum discussion (10 months ago) and it was said that this will be a new feature request. Has it available right now ? xg / xgs - allow ip from specific asn number only Thanks.

Can anyone please tell me (A) How to block all QUIC traffic in and out ,and (B) will that then give me better log reports of url's visited ?. Thanks

Can someone please tell me whether it is possible, and if so how, to put the Sophos Firewall between the connecting clients and my ASUS Router ?. The reason I ask is I want to have better logging of what sites are being being visited . Thanks

Hi, I'm reaching out because I'm interested in configuring a loopback interface to manage Sophos. I prefer not to use the IP from our management network for this purpose. I attempted to create an alias on port A, and while I can successfully ping it…

We have 3 IPs outside our IP range. These IPs are in the range 192.168.10.1 and our IPs range are in the range 192.168.1.1, what can I do in our Sophos model FW firewall? Thaks in advande

Hello, We have switched from an XG to an XGS with backup/restore. A WAN connection works via PPPoE. This runs smoothly on the old XG. However, after we put the XGS into operation, the Internet connection did not come online and there was an error message…

I am completely stumped by this. I am sure its something obvious that I am overlooking. Lan Port 1 - 192.168.1.254/24 MGMT port 5 - 172.16.0.254/24 I already had a rule saying mgmt subnet source 172.16.0.0 could access lan subnet destination 192…

What did I do wrong?

Hi I have a linux server in the DMZ, and I want to manually patch it from time to time. so I want to open access only during patches then close access to WAN. what are all the rules to put in place. well I'm going to choose the scheduled time tab.

Port forwarding rule I have an external ip address (PortB:8) currently used for a production website on port 443. I would like to be able to access a test web server via the same public IP via port 65443 and translate to port 443 at the server.…

how do I block traffic from a brodcast address in my local network?

Hi all, # XG330 I have a project to set up an SFTP server to transfer data securely from a remote station to the SFTP server located in the DMZ.(Head Ofice) the server is installed, configured and integrated into the dmz. the remote client uses an…

We have an XGS 3100 which approx. every 1-2 weeks becomes unresponsive and requires a hard restart as it completely stops functioning. We have a smart plug connected now, which automatically powers it off and on again if the network goes down to mitigate…

“Our penetration testing team has discovered that our servers are responding to client requests with the server software name and its version. For instance, the responses include identifiers like “openssh_for_windows_9.2” or “nginx 1.22.1”. Does anyone…

We have 1 WAN IP from our ISP 18 LAN IPs from the ISP Current setup is one CAT6 from ISP to Sophos Firewall. Firewall has the 1 WAN IP interface setup for internet We need a port enabled for on the firewall for a Vendor router to use one of the…

Good Eve. Trying to connect to a network switch via https. Error page : The trust status of this website's certificate could not be securely established. About this request URL: https://somePublicIP Certificate details: Valid From: Feb…

Hello Everyone. I have my Sophos XG Virtualized in proxmox on a Dell PowerEdge R430, and it is working beautifully, except that my management network doesn't seem to be able to contact the internet, and I'm not sure why. I believe it's because the devices…