We use mostly Apple equipment (MacBook, iPhone, iPad) and on our MacBooks we have Little Snitch which is an application-aware outgoing firewall that kills attempts to reach out to advertising sites, trackers, etc. This doesn't help the phones and tablets…

Hi , I am on Sophos XG 18.5. URL to block: www.google.com/.../ads.js I have added a custom blocking category with keyword filters like below www.google.com/adsense/search/ads.js search/ads.js adsense/search/ads.js but this does not block…

XGS4500 (SFOS 18.5.3 MR-3-Build408) Since new this device has duplicate Exceptions (example below), there are 5 of them. There is what looks like a factory one (no delete option) and a second one with 'Original' After the name. I cannot delete the one…

I have a client where the user's logged into their pc's cannot access certain categories of websites. If i sign on to their server with our admin account we can view all the websites no issues. We have an XG450 installed on site. We even turned off all…

Whenever I try to download Unreal Engine 5 through the Epic Games launcher it gets stuck at 21% saying there is a network error. I am currently on Epic Games support but I'm 90% sure this is something with our firewall. Any help would be greatly appreciated…

Hi. Regarding Sophos XG, under menu Protect --> Web ---> Categories I have created an external URL database to keep a centralized Black List of domains. it works fine but it seems that it only refreshes the contents of the .txt file every 24/48…

Transparent mode results in random timeouts. We tried various things trying to find the issue while running in transparent mode, then recently discovered the issue goes away in proxy mode. Not sure if this is a common or known problem with a fix?

One method of tenant control in SaaS is to insert information on permitted domains into HTTP headers by proxies on the path. In Sophos XGS, the "Restrict login domains for Google Apps" setting in the Web Policy is considered to be applicable to this…

Hi, I can't use whatsapp web in my organization. After recognize with qr code, it show "messages completing " without show the correct window (message list). I inserted all exception in url policy, without success.

Hi. We have a number of new Sophos XG Firewalls and we are experiencing issues with the Web Filtering aspect as in, it just will not work. Here is an example of a setup at one of our sites. At this site the below has been configured to allow a residents…

Hey Guys, Is there anyway to block TIk tok ? I see there is no Sophos App for this .

Hello guys I successfully implemented a time quota in a specific category for my kids. If I go to Web --> User notifications, I see that I can customize the messages for the block pages. I did it , but I see no way to customize "Use x minutes of…

I have 2 offices at different locations at both offices there are sophos. Now i want to block some sites at both offices but it only works on head office. Please help me

Hello, I have some users on my LAN trying to update their MacBooks pro (everyone with the HTTPS decrypt enabled), but they are having troubles. Can someone tell which https decryption exception should I add, so they can update their MacBooks? And…

I have blocked facebook using web category (social networking). i enable override and created the user and group to override the website....outcome, when i insert the code from my user portal the site is not opening....shows its procesing then blocked…

Hi, I just Recently Update my SOPHOS XG 430 Firmware Version From Ver 17.5 to version 18.5.2 MR-2-Build380 and i found that Safe Serch are not Working can one idea About this this is a BUG Note : in Version 17.5 it is Working OK without any Problem…

Hi, I want to enable Youtube for a specific time period and needs to block for rest of the time. I have created a rule with time specific but it doesnt work. Can u help me out on this.

Hi, I'm new to XG firewalls, so please bear with me. I have created a user and a web policy override access code as outlined here: https://support.sophos.com/support/s/article/KB-000038467?language=en_US This is working as expected, but when typing…

Hi, Community, one of the problems we are facing is to allow the internet based on MAC address to both the VLAN Users if this is not possible due to the involvement of the router then is it possible to create a rule on FW to use it as a proxy. My network…

I am currently migrating a customer from utm to xg. He is using an upstream proxy for any some corp websites, the others are going directly on Internet. All the clients are using the utm as a explicit proxy at this time. As there is a default…

We have a URL Filtering Exception for all apple.com traffic. See below. ^([A-Za-z0-9.-]*\.)?apple\.com\.?/ Is it possible to craft/recreate the above to apply the exception to all apple.com traffic except music.apple.com ? Therefore blocking music…

Hi there, we are a school that currently has a Sophos XG that is doing our web filtering. We now want to change to Smoothwall for the filtering and would like some advice please. Currently, the setup is: LAN > XG > Router > WWW With the Smoothwall…

Hey Sophos, We've recently been testing Packet Inspection / HTTPS Decryption and was mostly a success, but some sites were presenting the below, even when we had the appliance cert installed. Can someone shed some light as to what was causing this…

Hello, Once that a policy checks exception has been created, can I ignore this same exception for a specific group by a firewall rule (it can be by a IP Range, IP list, networks, Host Group, by selecting an entire in interface... it doesnt 'matter)…

Hey folks, So I don't think there is an answer for this yet unless there is some funky AI based technology that might be in the endpoint soon. A school came to me saying there were inappropriate images being displayed. Turns out there wasn't at all…