Hi, I have the WAN port and the LAN port with 2 VLANs on each. Since it is possible from SFOS 18 to have no IP address on physical interfaces with VLANs, I need to get rid of the "dummy" addresses, but : if I uncheck IPV4 configuration on the…

Hi everyone, we have a common setup: Huawei access switches -> Huawei Core switches -> Sophos Firewall XG. Most of the VLAN interfaces are located on the core switches, which makes it difficult to control or monitor traffic with the XG. Should…

Hi! I have an XG125 where the network of port 6 is 192.168.12.0/24 and the port 1 is 192.168.0.0/24, both in LAN zone. Port 6 has a DHCP server I've added a VLAN on port 1 (Port1.40) with IP in DHCP I've created 2 rules: 1: Source zones: LAN Source…

Hi all im searching a solution for this topic: I have made a Zone (Serverzone) and i want it to be as VLAN in Port 3 but i also want it to be in the Port 2(not as VLAN, direct) i tried to made a bridge, but then the VLAN Port didn't work, so whats…

One of our clients was trying to use a specific app and Sophos kept blocking it, so we went in and unblocked the app and all services related to it. However this didn't work so we went on to making an unrestricted VLAN network that they would only use…

I've got my Sophos XGS 136 set up nicely now except for 1 thing. Background Primary WAN is Cable with Aussie Broadband. Backup WAN is Telstra Cellular 4g Modem on failover after failure to ping 8.8.8.8 I have 3 Vlans Home Work Voip If…

I have a rather simple lab setup that i'm testing before I go live - Sophos XGS 87 - Netgear GS108PE - POS Handheld - Epson TU22 - Unifi LR AP A VLAN has been configured for the Epson and handheld, and this VLAN (VLAN10) is tagged on the Port…

Hi all, I think I am just misunderstanding how this works but maybe you can help me with clarifying. :-) Components: - Sophos XGS 126 - TP-Link Managed Switch Configuration: - Sophos connected to switch via LAG on fibre channel, IP: 10.51.1.30/27…

Is there a way to create a vlan allow connected devices (via AP) bypass firewall? My current SSID in Vlan has a different IP subnet from my home devices. There are times I want to connect devices that totally bypass home firewall. This setup doesn't…

I am having an issue routing traffic for newly created VLANs. I have created a new vlan and am able to ping the XG gateway (and get to the Web UI), but I cannot get out to the WAN. I tried creating a firewall rule that allowed traffic from both the…

I have issues using DHCP on a VLAN. DHCP server and DHCP relay are not assigning IP address to a VLAN. First, this is my setup. I have a core switch that is attached to all servers. The core switch is attched via a LAG link to the XGS firewall. The…

Hi all, I have a XGS116 and created a LACP LAG to the L3 core switch. The LAG is working as I can ping from the firewall the core switch and it´s all VLAN interfaces. The strange issue I have is that I can´t ping any other device "behind" the core switch…

Hi All I worked on SF01V (SFOS 17.5.10 MR-10.HF062020.1) I created 2 vlans with IDs 10,20 vlan 1 is 10.10.10.1/24 under port1 (lan) vlan2 is 20.20.20.1/24 under port 1 (lan) and thin i created DHCP for every one Vlan1 10.10.10.10 - 10…

Query: I have Cisco 300-52 Manage Switch VLAN 1 -- 192.168.0.1 --- WORKING FINE VLAN 2 -- 192.168.100.1 -- WORKING FINE DHCP is through Sophos Firewall i have created the VLAN 5 on the same switch & assigned the one port to vlan5 created the DHCP in firewall…

Hello I have a dobut with the log viewer in Firewall sophos XG: how can I see the traffic generated by the configured VLANs? I don't see any menu option to log the traffic of the rejected or allowed VLANs. the scenario is that I set up a bridge…

cant figure out what I'm missing... XG125 I have APX120 connected to port5. tagged vlan is turned on. port5 192.168.5.1 3 vlans are on port5 vlan5 - 192.168.55.1 vlan10 -192.168.58.1 vlan20 - 172.18.58.1 APX120 is tagged vlan5 my wifi…

I have connected my APX120 to the XG and created a new wireless network, basically same as the default sophos. Bridge to AP LAN. Now I want to add another network with its own subnet, that will have access to my LAN on Port3. So I created a vlan connected…

First of all, apologies if this is a really stupid question, I'm still learning the XG Firewall. We're migrating from a Sonicwall and I'm trying to reproduce the DHCP config we have on the XG. It's simple enough: I've got range #1 replicated, easy…

I have a XG running 18.5.1 MR1. This XG has 2 physical interface bridged together with multiple VLANs. Each of these connections go to a managed switch via said Bridged(Trunk) connections. I have a Server in VLAN 5 that is connect to one switch…

hi all, under "network > interfaces", when i add a "vlan" ie give it an ip/subnet/vlan tag no etc and bind it to a physical port i can see it under vlans page when i go back under "interfaces" it just says connected but NA under the ip details, why…

Sophos XG430 firewall, multiple VLANs and two ISPs are working in our network shown in attached picture. I want to use ISP2 (Wateway1) for VLAN21, VLAN24, VLAN24 and ISP2 (Wateway2) for VLAN16, VLAN17 internet traffic , is it possible we use both gateways…

I currently use SophosXG with two connected Netgear Nighthawk access points. I would like to start using the VLAN configuration, but am searching for the right walkthrough to set this up on both SophosXG and connected netgear APs.

Hi, I have 2 physical interfaces and both are lan zones. They should be separate networks. There should be no traffic between both of them. I have 4 Sophos APs on interface A. There should be Wifi bridged into lan A. Before I ordered switches with…

Hi Team, Need to segment a remote branch network using VLAN. My current setup. HQ -> XG210 build 18.5. With already configure VLANS. It's also the DHCP server for the VLAN network. -> VLAN attached to remote RED interface/Hardware with the necessary…

Have I seen it right, that die Feature 'Peer administration settings' under HA is not working if my main Interface is an VLAN Device? The VLAN Interface is not in the list of selectable interfaces. Only the parent LAG device (which stupidly needs an…