I've been facing an invalid traffic issue with an XGS5500 (SFOS 19.5.2 MR-2-Build624) for a few days. the connections of some PCs to a particular domain seem to work but then I start to log errors such as "Invalid traffic". The firewall rule is a simple…

Hello, I have this alert today: intrusion prevention alert, but i don't know how to check or to diagnose this

We have a firewall rule allowing access to an internal server. Source and Destination HB must be green, also the rule has "Block clients with no heartbeat" enabled. The rule exists unchanged for years but recently we noticed users complaining that they…

SDWAN/IPSEC Tunnel Issue Setup Site A Sophos XGS 107 2 X WAN connections 2 X Route Based IPSEC Tunnels to Site B Site B Sophos XGS 87 1 X WAN connection 2 X Route based IPSEC Tunnels to Site A Issue Site B can ping and connect…

So i'm a bit confused and could use some help. After running NMAP on my public IP for a sanity check i was greeted with ports showing open that shouldn't be available to the WAN port. I don't have any services checked on my local service ACL for WAN Starting…

We have experienced this issue for the past year. Sophos support has been troubleshooting with no success although the firewall is rebooted immediately after the issue starts. Unfortunately this is a retail environment and customers are waiting and…

Hello I am new to sophos, we are carrying out a POC with your firewalls and we are having a problem, the routes choose the xfrm1 interface but with the xfrm2 ip. From what I've read it seems like a BUG NC-114075 NC-113973 XFRM1 IP: 10.1.X.2 XFRM2…

XGS136/ SFOS 19.5.2 MR-2-Build624 DNAT rule for on-prem mail server does NOT have email scanning turned on. Microsoft 365 Exchange Online Protection (EOP) is the spam filter. When I send an email to a distribution list of about 35 members from an…

Hello, since adding the Sophos XG as man in the middle / gatway to our network, we have speed issues more or less, specially over SMB. At moment the XG is connectet over 1 gig port to the main switch, the main switch has sub switches, at main switch…

Hi, We have 2 types of IPsec and L2TP VPN users. one which have Intercept X on their systems and another which are normal users without Intercept X. Now we want to restrict users to access only from their specific machines. Like the users which have…

Hi, I'm currently having Internet bandwidth issues when my network traffic goes through Sophos XG firewall. My ISP is supposed to be mbps 940up/940down, but I got only 100/100 mbps per device, some devices losing Internet connection sometimes here and…

When going under Hosts and Services, and then under the Services tab, if I try to add a new service regardless of the name the save button does nothing. For example trying to add a service for ManageEngine Endpoint Central which requires TCP ports…

Hi, Firewall version: SFOS 19.5.2 MR2-Build624 I am unable to locate the policy routing. It should be under the category Routing but it's not visible. Screenshot is attached for your kind reference. Kindly help me locate where I can configure…

Hello everyone, I joined the Sophos community, after having tried UTM9, I was delighted with its simplicity and functionality/security, so I decided to migrate my company's firewall system to XGS 136, I thought well if UTM is already good, this one should…

Hi There, Recently switched over from a Draytek that had very basic PFW functionality and I've managed to get everything else working for my internal VOIP phone, but unable to get my plex port forwarding to work. For context, I use unraid to host…

Good day l have a client with an XG 210 V19.5.2 We are unable to access this site vmi1314319.contaboserver.net:8443 inside the local area network. But it can be accessed outside the local area We tried to troubleshoot using Logviewer, but no packets…

Hi All XG330 (SFOS 19.5.2 MR-2-Build624) I have the problem of connectivity lost, in MS Teams while meeting as picture below. According to analyse packet between incoming and outgoing when we use MS Team, I found that in the time of connectivity…

Hello, in our head office we have a XGS2100 Cluster running on firmware version: SFOS 19.5.2 MR-2-Build624 We have some branch offices connected via IPSEC tunnel interfaces to the head office. For this we have some SDWAN Routes. Is there a way…

Hi all, XGS 19.5.2: I did that a couple of times: I have a Problem with Port Publishing when using different ports (externally 2100, internally forwarded to 22). I define an access rule from WAN to LAN on Port 2100. OK. I define a D-NAT rule…

Hi, this issue is listed as resolved for 19.0.2 NC-111476 FQDN Subdomain learning isn't working in case of non-SFOS DNS server set for client. We're on 19.5.2 We have a server that downloads files once per day from a FQDN like files.downloadserver…

Hello everyone . I have a problem with the configuration of the PXE/SCCM taking the XG as DHCP . Here is my config - next server: ip address of my TFTP server (SCCM) - Boot file location: SMSBootPM100003\x64\wdsnbp.com I get this error ( TFTP time out…

Hi, I am facing a problem with the LAN zone attached to multiple interfaces. FW: SFOS 19.5.2 MR-2-Build624 Setup: Port1: LAN (192.168.30.254/255.255.255.0) Port2: WAN Port3: LAN (192.168.32.254 /255.255.255.0) I've created the following test rule…

Hi All, We have a network firewall rule setup to allow traffic to a WAN destination. However we can see in the logs that the traffic is getting blocked by the web filter component. We have a user network rule further down the list that allows access…

Hi, Encountering a weird error when trying to attempt using a server for DNS forwarding. We have a few branch offices - each connecting to DC via IPSEC (Connection Type: Site-to-Site / IKEv2) - with the DNS Forwadering Host in the DC. Now here's…

Hello, I am not able to connect with a local FTP script to a server. This script works at another location but not here. Sophos XG latest version SFOS 19.5.2 MR-2-Build624 Here is the log: messageid="01001" log_type="Firewall" log_component="Invalid Traffic…