Hi all, We have a Sophos XGS firewall and we have imported a self signed certificate from our organization to the firewall which is used for the admin console and user portal under Admin console and end-user interaction -> certificate. We have also…

Hello Community, Anyone here have configured SSL VPN that would allow multicast traffic thru the SSL VPN? 1. We have a ROIP (Radio over IP) Receiver on one of our remote network, this ROIP receiver listens on a multicast IP. the operator radio…

XGS135 wearing SFOS 19.5.1 MR-1-Build278. Trying to create a (mostly) automated Sophos Connect installation for an SSL VPN, and am pretty close. I thought. I am using the following .PRO file-- [ { "gateway": "vpn.externaldomain.com", "user_portal_port…

Hello, today we had a strange situation on SFOS 19.5.1: a VPN user logged in with wrong credentials several times. In the XG log this was shown as VPN auth failure in log as expected. SFOS does not log the client IP for failed logins anymore,…

Hello! I have a need for configuration that has never been necessary before. I have remote users using SSL VPN. In my global SSL VPN settings I give my two internal DNS servers and also the company domain so that name resolution for internal services…

Been searching around google and discussions in Sophos Community and cannot find the answer for my issue. I'm having one user using Sophos Connect who can successfully sign into Connect through the connection file. However they are not able to access…

I notice several of the help screens for SCCLI.EXE have verbiage to this effect (in this case, from 'SCCLI remove')-- * The remove command will fail in environments where policy does not allow unmanaged connections to be used. * The remove command can…

Good Afternoon, We have recently performed a migration from Sophos UTM to Sophos XGS and I am currently working on re-instating the SSL VPN service for use by our third party support companies. We operate two DCs with services either 'homed' in a specific…

Hi, I have configured SSL VPN according to Sophos KB. The issue i have is that clients can connect to SSL VPN but cannot access internal network resources (shares, RDP, etc). ISP - Router - XG - LAN Config: XG WAN: 192.168.1.89 (static) XG LAN…

Hello, do you know if is possible to use a third party wildcard certificate to configure an SSL remote access on an XG firewall? Thank you in advance, Marco.

Hi, We provide IT-support for one of our customers in Nigeria. I can manage the firewall via VPN connection from Belgium. Is it a good idea to upgrade the firmware from the webbrowser in Belgium, or do I need someone onsite? (I could use a local…

Hi all I have a Site to Site SSL VPN configured between two locations, with Subnets 192.168.100.0 /24 server side and 172.16.18.0 /24 client side. The connection says its active and I have added rules on both firewalls to allow from LAN to VPN and…

Hi, I have the the following setup: Office FW (10.1.0.0/24) <==Policy based ipsec==> DC FW (LAN: 10.2.0.0/24; SSL-VPN: 10.3.0.0/24) <==Route based ipsec==> Partner FW (172.20.32.0/24) I try to announce the routes for the office (10.1.0.0/24),…

Hi Guys, Is there any way to disable user access SSLVPN from LAN. Some users connected to VPN from home and when thy bring laptop to work it still stay connected. I did this and still no luck. Just disable the SSL VPN check box for LAN in the Administration…

Good afternoon, I am starting to test the options that XG Firewall has to work with VPN. Currently I want to set up a Site to Site SSL VPN with two geographically separated XG. The example configuration of both is as follows: XG1 and VPN server…

We are currently in the process of upgrading our SG to an XG and because of that have to deploy new SSL VPN configs to all our clients. In the past we used Tunnelblick as our OpenVPN client of choice, but there is one major issue, in order to import…

Hi everyone, I see a lot comments at this forum where I can see, that sharing Port 443 TCP for WAF and SSL VPN is working. The documentation says, that it is not possible: https://docs.sophos.com/nsg/sophos-firewall/19.5/Help/en-us/webhelp/onlinehelp…

Tried all searched the whole forum but unsuccessful pls help. regards

Connecting from an Android Mobile via IPv6 only carrier (Telstra) network (single stack) to Sophos XG19 via SSL VPN seems to create some strange issues. The Sophos XG firewall has a single IPv4 gateway address that the client connects too without any…

Hi; We have a large server farm behind sophos firewall. There are different domain name AD servers available. I can authenticate users over ADs with these different domains. I can also use AD authentication on SSL VPN connections. No problem till this…

Hi folks, we are currently in the rollout of SSL-VPN Configurations and noticed performance issues at users which are using LTE Internet connections with latency. So we want to improve performance by switching from tcp to udp at the sophos firewall…

Hi Sophox XGS 136 1 GBit/s Network Connection Firewall Network 100 MBit/s @ my home Speedtest from my home pc: ping 8, jitter 0, download 97.9 Mbps, upload 112.6 Mbps Speedtest from server: ping 2, jitter 1, download 939.8 Mbps, upload 946…

Hello, We would need a specific user to connect SSL tunnel client and access internet troughtout the sophos so that he can have the public Ip from the company. I've created an SSL VPN and set the tunnel access as "Use as default gateway", created…

After setting up the auto connect on a windows 10 machine I receive access to c:\program files (x86)\sophos\connect was denied. I have tried running with admin rights and get the same error. Can someone provide a resolution to this?

Hello everyone. I have 2 XGS Firewalls connected via SSL Site2Site VPN, which works good. I created a DNS Request Route for contoso.com (changed of course to my setup) to go to DC DNS IP in main office. This worked for quite some time, now it does…