Hi, I have set up a free account with FreeDNS. My public IP address is pointing to the correct subdomain.mooo.com However, I have a query about the hostname, SF only accept: subdomain.mooo.com. But in order to work, you need to include the update…

Hello, I need support with configuring mail traffic (SMTP) from external via noSpamProxy (DMZ) to the internal Exchange (LAN) and back again. I have largely followed the Sophos instructions "Protect internal mail server in legacy mode" ( ( https://docs…

Hi, I had install SFOS on my own old PC for some time, but did not connect /join Sophos Central after more then 30 days. I was trying out DNS protection after watching this video from Sophos Techvids: https://techvids.sophos.com/watch/YKKJiTqRndLS1eKRKsdJqe…

HI How can i check the interface counters for WAN interfaces in the Sophos firewall ?

I'm having an issue where we have two vendor routers that need to be highly available to all branch and data center locations (No changes permitted on the vendor R1 and R2) The networks at all the branch locations consist of a Sophos XG135 as the Gateway…

Hi everyone, I have some problems with the STAS service. The picture shows the topology: I have two locations, the HQ with an XG210, and the branch with XGS136. Both are connected through a VPN tunnel. The STAS server is in HQ location. The communication…

Hi, we are using xgs-3300 due to user and throughput increase in firewall utilization also increase we are planning for upgradation If we purchase a higher model xgs series can we use the existing license or do we need to purchase separately. …

Hi, we have the below IP series in Wan port and alias, all tunnel services are running. now ISP is providing a new alias /29 subnets with different IP series if we add a new alias /29 subnets with the existing setup it will work or not. - Port…

we have reinstalled the firmware for the firewall. and port 1 is not working it was damaged. we are trying to configure port 2 or 3 as LAN via the command line When we try to use interface configuration it is not allowing us to configure port 2 , we…

I have a current setup with a pair of XG210 in HA Active-Passive mode and am preparing to upgrade them to XGS2100 in the same HA configuration. I have a configuration backup from the active XG210 and have attempted to restore it to the new XGS2100 but…

Hi all, in SFOS 20.0.2 MR2 , the VPN portal has new options for download VPN configuration We are using community OpenVPN clients ver. 2.6.12. for windows clients , not using the OpenVPN Connect clients Which configuration we are supposed to download…

For firewall rules that allows access to a sensitive system (host) and where access is usually not required all the time, it would be nice to have a feature to enable them manually when needed but with a timer that disables the rule after 60 minutes or…

Hello, Yesterday I tried to reimage a Sophos Firewall of ours but I didn't succeed. I followed the instructions as provided on https://docs.sophos.com/nsg/sophos-firewall/21.0/help/en-us/webhelp/onlinehelp/AdministratorHelp/BackupAndFirmware/Firmware…

Hello everybody, Just new to the forum so please be gentle. I have 2 WAN's on Port 3 and port 6 What I wanted to do is put the guest and staff wifi to use the connection on Port 6 instead of the main connection on port 3 I made firewalling…

I came across a couple of these threads mentioning that commenting didn't work in JSON, but it will as long as you put them in the right area. If you put the comments just outside the child set, then it will import the SCX without an issue. Example…

Hi all, we are using XG firewall and using STAS authentication for user internet access. we are facing issue with outlook and teams application this application getting discounted frequently, but that time internet is working fine with the system…

Hello all, we are using our Sophos XGS-Firewall as a SMTP proxy with MTA. We have an Exchange Hybrid environment. The mail flow right now is as following: OUTBOUND: Exchange Online -> The internet INBOUND: The Internet -> XGS -> Exchange OnPrem…

I want to drop the connection to my Sophos SG 310 from one country for example Xcountry. what must I do Thanks

Sophos XG XGS116 (SFOS 20.0.2 MR-2-Build378) has problems with ipsec vpn. The Sophos Connect client shows "No response from gateway [Adress]" So we took a look on the firewall at "Administration" and "Device Access". Here we have IPSec selected. …

I have a Sophos XG-series firewall with multiple SSID's and APX320 access points. I'm able to see a list of wireless clients via Protect > Wireless > Wireless Client List . How can I pull this same data from Sophos console?

Hello, for the connction to my fiberglass provider i need an sfp module with following connection feature: SFP, LC-Simplex, 1000BASE-BX-D, Singlemode. I cannot find one in the compatibility list. Which is compatible? https://www.fs.com/de/products…

Hi folks, a question about XG ability to decode DNS over HTTPS and TLS, can the current version of XG decode DNS requests sent to it using HTTPS or than TLS? Ian

We have a Sophos XGS 6500 and our users utilize Sophos Connect as our off campus VPN client. Recently we ended up with some malicious user or users trying to login to our VPN web portal and locking out many accounts. We turned off the VPN portal, but…

Hi, Good day! I am looking for guidance regarding my network configuration involving two ISPs connected to my firewall. One set as active and the other as a backup. This setup has enabled us to utilize Remote IPsec VPN effectively. I am currently…

Ok everyone, I am trying to get back to our HA setup and have a few questions. We have 2 X XGS3100's, the Primary unit is active and currently registered and subscribed. I fired up the second 3100 today, now it is only connected back to the switch thru…