Hi All, We are in the process of trying to migrate off our old Sophos UTM FW and onto our new XGS firewalls. We have a mid sized organisation running multiple vlans through the UTM. Our idea is to have the XG and SG running in parallel to test vlans and…

After having messed around with the webgui of Sophos XG (Home) on the HP T620 Plus & Intel I340-T4 NIC for a while, I have came to the conclusion that Sophos XG's VLAN feature set lacks the ability to assign PVID on the ports of the I340-T4. Having looked…

Hallo, we are using XG210 with SFOS19 and a large Unifi setup with multiple switches and access points. Everything works fine. After trying to move the Guest Portal created by Unifi to a VLAN the guest portal login page doesn't come up anymore. Using…

Hello , Today i saw a misconfiguration , but i can not delete this Vlan how can i achieve this ? receive error 'can not delete vlan'

I have two sites that use RED devices to link back to our central office; one site uses a RED 15, the other a RED 50. Both sites are configured to operate in "Standard/unified" mode. The RED 50 is set to Switchport mode "Switch". At both sites, I also…

I have a Sophos XG 135 with firmware 18.5.3 I have a small branch office where I replaced the old firewall with the XG. I informed the office admin to plug in the Meraki Access Point into one of the LAN ports (port 8). The Meraki picked up the reserved…

Hi! Do VLAN-s work in Hyper-V version of XG?

Hello, I have a Sophos XG appliance and an ESXi 7.0 host directly connected to the appliance (i.e. no physical switches in between). I want to isolate the VMs on the ESXi host so that they should not be able to communicate internally unless explicitly…

Good Morning We have an issue where the firewall seems to lose data or packets when pulling large reports from our https server internally. We have disabled all filters. When connecting directly to the server with a LAN cable, we pull the reports…

I'm evaluating Sophos XG in a virtual environment with a bridged configuration, an interface br0, with one physical port attached to a router and the other attached to the core switch. 100% of the traffic between the router and switch is 802.1q-tagged…

I have a guest WiFi network running on VLAN40. I'm trying to create firewall rules for this network but when I select the VLAN interface (#Port8.40) in Source networks and devices, it has no effect at all. I can define the network subnet here instead…

Clients on VLAN are able to obtain a DHCP lease from the Sophos XG210 but absolutely no other traffic is passing or showing any activity in the log. Client is unable to ping anything. Firewall rule is: Accept Source Zone: VLAN Destination Zone:…

Hello and Good Day Everyone, I am having one more issue with xfrm interface, at one of my BO the ISP have provided ILL on vlan interface. I've setup IPSec Tunnel with VTI / xfrm interface. the Tunnel is showing up at both ends (Ho & BO). xfrm interface…

How's it going !! Currently we have configured a Vlan with sub interfaces as in the example: That is, it is required that the network of the 172.82.11.0/24 segment has an exit through the gateway 172.82.11.1, however it goes through the default…

How to use Vlan's in Sophos XG

Hi, I have been struggling to get transparent birding to work with VLANS properly. I have two ports bridged, one as LAN and one as WAN in bridge mode. VLAN 1, which is native seems to be working ok. I have another TAGGED vlan, vlan 3, which kind…

I am struggling with getting my interfaces fully functional. I am currently configured on the Sophos as follows: Port 1: VLAN 10 - 10.10.10.1 DHCP Pool for that subnet VLAN 100 - 172.16.20.1 No DHCP (MGMT) Port 3: VLAN 20 - 10.10.20.1 …

I have several Sonoff Smart Plugs. I assigned them to VLAN, with only WAN access. Sonoff has an app, that allows LAN mode, which means I can access the devices without internet. My mobile, which is connected to internal home network, is separated from…

Everytime I create a new VLAN, I cannot receive a valid IP. Here's an example: Here's the configuration for my newly created DHCP for VLAN 130 -------------- -------------------- ---------- Sophos Router is connected to our Core…

Sanity Check: Cabling dual ISPs into separate VLANs and then plugging each one into the Sophos WAN port. Hey All, How are you doing? I wanted to reach out and ask my fellow network engineers at Sophos for a sanity check on my setup. I have a cluster…

Hi, Trying to get my RED to passthrough a local VLAN but doesn't seem to be working. Having the RED in switchport mode SWITCH obviously doesn't pass it through, however local network works perfectly. However when i change the RED to switchport mode…

Hello All This is my first time on sophos community discussion....so be nice :) We are about to migrate our firewall solutions from Cisco ASA to Sophos XGs. We are testing the new XGS firewalls before we implement them into production and I have had…

Hi All I've created a vlan on our firewall and created a zone and allowed the device access, ive created a firewall rule from the zone to the wan but i cant access the internet on that vlan, do i need to create a nat rule for this to work? (i see create…

Hi, I installed Sophos SFOS with XG18 on my 2 SG210 Appliances, becuase we need to have more then 1 DHCP-Relay. But even with Firewall XG the IPsec Site-to-Site won´t work. I configured it for 3 VLANs like mentioned here: https://docs.sophos.com…

Hello, I am attempting to VLAN guest wifi traffic. I know I have the switch configured correctly for sure. I think I am missing something in the firewall though. I have a Sophos XG330 (SFOS 18.5.1 MR-1-Build326). I have VLAN 10 in the firewall and…