Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • WAF Inspection

    Hello Community. Is there any information that Sophos XG appliance is inspecting traffic between Sophos ----> Server ? Simple scenerio: [WAN INTERNET] --------> (SophosXG_WAF Rule) -------> "Synology Server with a few services on non standard ports…
  • Publish some web applications using the same public IP.

    Hello friends. I only have one public IP on my Sophos XGS, but I want to publish three web applications (web1.dominio.com, web2.dominio.com, web3.dominio.com), all arriving on the same public IP and on the https port. I know that via NAT, this would…
  • WAF "Inbound Anomaly Score Exceeded (Total Score: 5)" without a ID in reverseproxy.log

    Hi there, We have a support portal protected with the WAF (v18.5.1), however, we get this error message. "Inbound Anomaly Score Exceeded (Total Score: 5)" However, we do not find any ID in "reverseproxy.log" to make an exclusion. What can be done…
  • Preserve or retain client IP through WAF

    Hello, I've done some searching on here and many posts I find are 5-10 years old and/or the original poster never came back to confirm whatever was suggested fixed their issue or not. And, for reasons beyond me, these threads are locked so you cannot…
  • HTTPS WAF redirect loop

    Set up: Client <---> Sophos HTTPS WAF (Ports 80 & 443) <---> HTTP Wordpress Server (Port 80) The reverse proxy seems to keep redirecting me to HTTPS on port 443 despite the request being for HTTPS on port 443. ~$ wget http://blog.mysite.com/ -O /dev…
  • Webserver Protection log for Protocol Enforcement

    I have a website behind a webserver protection a virtual XG 18.5.1-326 One page on the website creates an error that leads to a blocking of the next page. The only way to unblock it is by creating an exception for the relevant path for the "Protocol…
  • Web application Firewall - WAF policies limitation to 60 rules?

    Hi, I'm using a virtual appliance of Sophos XG 18.5.1 (2c4g) I configured 60 WAF policies, but now I'm blocked by a limitation. Error message: 60 WAF policies are already enables. This policy will be created but it will not be enabled. Are you sure…
  • WAF IPS not working with HTTPS requests, only HTTP.

    I have gone through the steps to set up WAF according to the documentation, but I cant seem to get the WAF IPS to work with HTTPS requests. It works perfectly fine with HTTP requests. Here is my configuration The certificate is valid for both…
  • XG v18 Disable WAF HTTP trace & track

    Hi One of our customers has been advised to disable HTTP trace/track as it is identified in a vulnerability scan. They have asked the question "what is the impact on the firewall operations?" if the change is made. This is not something I have come…
  • WAF Slow https Access to internal DevOps Server 2020

    Hi, i used to have pubished TFS 2015 with different XG Releases (17.0,17.5,18.0 and 18.5). Users connected to the Webinterface of TFS through a Public URL and XG had a simple rule with Form bases authenticationa against the TFS 2015. Last week i changed…
  • WAF Synology No Protection

    Hi, I did manage to config WAF for Synology Sync drive. But i dont have any protection. While im uploading testing file "Eicar" it gets passthru... Why i dont have AV, logs and other options turned on. Thx. #xg #synology #WAF #"web protection…
  • Frage zu Exchange WAF Regel in der Sophos XG Firewall

    Hallo zusammen, ich habe eine Frage, bezüglich der Veröffentlichung von Exchange Diensten über die Sophos XG Firewall. Bisher ist es so konfiguriert, dass ein DNAT Regel auf den SBS Server zeigt, welcher die Dienste veröffentlicht. Dies funktioniert…
  • Welches SSL-Zertifikat am Webserver eintragen

    Hallo Zusammen, ich habe eine UTM Version 9.506 am laufen und möchte einen Webserver in der DMZ bereitstellen über WAF. In diesem Falls ist das Baramundi Gateway welches von außen über Port 443 von den mobilen Gerätenangesprochen wird. Zur Info: …
  • WAF Antivirus File Upload

    Hallo zusammen, ich betreibe auf meinem NAS zuhause meine eigene Cloud die jeder vom www aus erreichen kann. Um diese zu Protecten läuft vor meinem NAS meine SOPHOS UTM Home auf der die WAF aktiv ist. Im Firewall Profil der WAF ist der Virenscan…