Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • One VLAN on two physical interfaces

    Hi, So I have two physical interfaces and want to have the native VLAN and VLAN 10 on both of them. The first interface is connected to an wireless AP and the second is connected to a switch. The goal here is that wireless devices on VLAN 10 should…
  • SSL VPN Users through S2S and VLAN's

    Hi all, I have a problem with remote SSL VPN users that want to access locations that are connected with a S2S tunnel. Followed the guide below but can't seem to get it working. Sophos XG Firewall: How to configure access for SSL VPN remote users…
  • Setting up new APX 120 with XG-125

    Hello All, So I have recently purchased 2 new APX 120 devices to replace the old access points currently in use and I am having some issues in trying to work out the most effective way to get this installed in the environment. Some background. The…
  • VLAN Zugriffe funktionieren nicht richtig (Zonen)

    Hallo zusammen, erstmal zum Aufbau: Sophos XG Firewall Zone (IT) --> VLAN5 (Zugriff auf alles erlauben) [172.25.5.X] Zone (Produktion) --> VLAN6 (Kein Zugriff auf das Internet, nur Zugriff im eigenen VLAN) [172.25.6.X] Schnittstellen mit VLANs…
  • WAN PPOE VLAN TAG - WONT ALLOW LAN TO ACCESS INTERNET

    Hello I have a issue with my XG115 18.05.MR5 (Last version) I try to connect a new FFTH (ISP: SFR) internet access and I need to add a 2900 VLAN TAG to the wan interface 1/ I create a new dummy zone (Named "WAN_PHYSICAL") to a DMZ ZONE. 2/ I…
  • Sophos RED 20 and VLANs

    Hi I try to setup VLANs behind a RED 20 device for the branch office, which is connected to a XG firewall. The RED device is in zone "RED" and the HQ in "LAN". On the XG firewall I added a VLAN-interface (ID 100) for the RED-interface. The IPs for…
  • Routing - Troubleshooting

    My XG FW network is 192.168.210.x. I have connected to it a non-XG wireless AP (Velop) that is on a separate network 192.168.1.x. I've added a static route which forwards any traffic destined to the 192.168.1.x network via it's gateway of 192.168.1…
  • XG 125 + RED 60 zwei Netze über den VPN-Tunnel

    Liebes Forum, ich möchte gerne über eine vorhandene XG 125 und eine RED 60 zwei Netzwerke durchschieben. Was ist bisher konfiguriert? Sophos XG 135 mit zwei Netzen Port 1 - Netz 1 - Büronetz 192.168.10.1 /24 Port 3 -Netz 2 - TK-Netz 192.168.20.1…
  • Add VLAN to Bridge port

    Hello everybody, I would like to know if it's possible to add VLAN to a Bridge port. For example: Bridge port = Port1, Port4 and Port8 VLAN = 20 and 30 I would like to add those VLAN to the bridge. I receive IP from each VLAN but I cannot…
  • Setting up Guest network

    Device: XG 125 Firmware: SFOS 18.0.5 MR-5-Build586 I am new to Sophos, so I apologize if this is a simple question (I hope that it is!) or one that's been asked 100 times before. I'm trying to setup a guest network. My goal is two fold. One is to…
  • how configure router on a stick for multiple vlans in sophos xg 18.0.4

    Dear Team, We configured rules for destination zone to source zone and vice versa for both vlans. But doesn't worked. The same configuration was working with 17.0.5
  • Subnets in LAN Zone

    Hello. Our network topology is like this: VLAN 172.16.100.0/24 ------------ Layer 3 switch ------- VLAN 172.16.10.0/24 -------- Sophos LAN Port1 172.16.10.1 Everything work fine in VLAN 172.16.10.0/24 everybody can connect to web proxy TCP/3128…
  • Ping from VLAN only with FQDN

    Hello Community, i have a problem. on my xg i have 2 Networks: 1. 172.20.10.x (Default LAN) 2. 172.20.8.x (VLAN8) Both have his own DNS Server: 172.20.10.x --> DHCP with DNS 172.20.10.1 172.20.8.x --> DHCP with DNS 172.20.8.1 i added all…
  • Site2Site VPN to a vServer / VPS

    Hello community, I want to place a Windows Server on a Cloud hosted VPS. To make it more secure, I want to place the Windows Server behind a Sophos XG (in a distinct vServer) and link both instances via VLAN. At the moment, the Sophos XG on the Cloud…
  • i want to create VLAN for BSNL FTTH PPPOE connection

    i want to create VLAN for BSNL FTTH PPPOE connection
  • Chromecast discovery between wireless and wired network

    Hi, I have a dedicated wired VLAN for IOT devices and one wireless network using APX320 which is being bridged to this particular VLAN. I am running several Google Chromecast devices in this VLAN, all in the same network subnet. Some devices have…
  • Vlan user authentication

    I am having issues with users on other vlans dropping their authentication every 5 - 20 minutes. My primary network vlan is 192.168.10.xx and all the users on that network dont have any problems. The users on 192.168.11.xx and 192.168.12.xx constantly…
  • Sophos XG Block Inter-VLAN Traffic DMZ

    Hello everyone, I have a VLAN 10 which is my DMZ and I want to disable/block access to my internal Network (VLAN 1). I can ping every Device from my DMZ and access every LAN-Device. I already tried to add a BLOCK Rule, but my Sophos seems to ignore…
  • Sophos XG loses Vlans in Migration from v17.5 to v18.

    Dear I would like to share a bad experience I had in a migration from v17 to v18. and I need to expose it because it was a small environment that could be circumvented but there are other giant environments that need to be migrated and I cannot experience…
  • Web Filtering remains active even when disabled

    Hello All, This is a repost of an unsolved problem from the Sophos subreddit ( www.reddit.com/.../) , so if it looks familiar that's why. I'm running Sophos XG SFOS 18.0.4 MR-4 and running into issues with web filtering. In short, the category "IP…
  • Sophos XG firewall virtualized with ESXi in VMware Workstation Pro on Windows 10 platform

    I'm a bit stumped on this one. Please see below for current topology. Windows 10 PC with VMware Workstation Pro installed - ESXi 6.0 VM within VMware Workstation - Quad port Intel NIC installed on Windows 10 PC - Using Virtual Network Editor…
  • DHCP Relay, VLANs, Gateways

    Hi, I have 3 VLANs on XG at the moment: Guest WiFi (we don't use Sophos APs) - 172.18.x.x Admin WiFi - 172.14.x.x VoIP - 172.16.x.x Each of these is using XG's native DHCP Server. We also have Windows DHCP in use for the corporate LAN, including…
  • XG125 18.0.3 VLAN to WAN rule

    Hi all. I am very new to Sophos XG 125. I need to have atleast 3 VLAN on my network and they need to access internet. I created the VLAN and assigned a subnet to it I added the VLAN to br0 I need the VLAN to access to internet, but i cant get the…
  • XG 135 - Birdged ports with VLAN won't load webpage

    Hi Community, After alot of thinking, trying and googling Im stuck, so here I am. At home I run a XG 135 with the latest updates installed. The XG is in DMZ (to keep my parents network and mine seperated) Clients within my VLAN just won't load…
  • Copy VLAN interface to another interface

    Hi, I intend to copy the entire configuration (ip alias, gateway ...) from a vlan interface to another physical interface, is it possible? My firmware is: SFOS 18.0.3 MR-3 Regards, HB