Hello, Since the 17th of March, I have an issue with iView. Before the 17th March the "Allowed Traffic Overview" was working well and the "App Risks & Usage" report too. But since the 17th March, the "Allowed Traffic Overview" is empty, and the "App…

XG SFVH (SFOS 17.0.6 MR-6) Win10 Hyper-V (1709) XG guest has 2 vCPU, 4GB RAM, 127GB vHDD, 2 vNICs in XG1 guest mapped to separate physical NICs on host. WiFi includes 2@ AP15, running main and guest networks, both registered and working fine. In System…

XG230 running 17.5 MR5. I want to be able to see traffic aimed at our 2 external IPs. In a previous position I had installed an ASA5508 and would see traffic on the external interface that was denied. Everything from login attempts to IP spoofing. I would…

Hi folks, appreciate your help in advance. I have an XG85 running SFOS 17.0.2 MR-2. It is set up to send logs to a Syslog server I set up just yesterday. [ https://i.imgur.com/BoNeNsB.png] [ https://i.imgur.com/0h1MnvD.png] That server is receiving…

Hello guys, i builded an new active - active cluster with my two XGs. Now I have one question: The Network traffic is going through both devices. But now I want to see the reports of my Network traffic from both Appliances. In the Reports Tab of the appliance…

We've had management ask for detailed VPN reports for some of our users, and are having a hard time delivering what they want. If I navigate to Reports>VPN>SSL VPN, I can get a report of what users connected, how many times they've connected, and how…

Hi all, Having trouble getting this to log dropped traffic. This is only a testing environment, for me to play around in. I've installed XG 17.0.1 on a VMware. I'm trying to get similar functionality as UTM 9 but not having much luck. Currently, the…

Hello every one, I have a sophos XG home Yesterday I can't access webadmin page after upgrade to the latest firmware, so in the below the error message i get it (Internal Server Error) So any one ca help me to resolve this issue Thanks in advance…

Hi all, Is there any way I can pull a log file showing system activity last night? Around 11pm, the MTA failed and didn't come back until a system reboot this morning. I'd like to know what happened. Thanks much Gary

Hello, I wanna ask a question, I want the reports to display the accurate domain for the user or the host not tell me that the application type is secure socket layer protocol only, i can't define what is the domains of this application type. the…

Hi All, I am wondering is there any way to extend the firewall real time live logs from Log viewer. I noticed that currently I could only view for past around 10 mins time. I have a customer who is requesting if this is possible. Thank you…

Hi, Has anyone here tried or purchased Fastvue reporter for Sophos XG?, how was your experience if you've done or currently conducting the 30-day trial? Is it worth the payment for those who paid the full version? Please let us know any feedback…

Hi, I am having issues with my kids network. I have a heap of the usual categories blocked to try and keep them safe but have allowed games for their iPads. I have the Sophos Authentication agent and certificate loaded onto their iPads. They have…

Hey Gents, I am wondering a couple things, first, is it possible to do a "tcpdump filedump" that is larger than 100,000 packets? Second, if not is it possible to save multiple .pcap files? I am looking to do a capture over a couple hour period and…

Hey Guys, i was wondering if i am blind or just plain stupid. But i am searching for the PPPOE Logs from a few day's ago. Is it possible to show older logs for eg. the pppoe in the web gui? I just can see log files from today when i use the "time…

I need to recover blocked network traffic logs from about a week ago. This traffic is blocked via firewall rule. I couldn't find a clear way to get this information by the reports view in the XG 310 webpage. I found a blog post indicating these files…

Hello; How can I export logs daily for iView live log signatures.

How do I check the amount of data being consumed in the following three situations: - in automatic definition and pattern updates - in syncing the logs and reports to iView - in the syncing of configurations, logs and status to the sophos firewall…

Hello everyone, I have been working on integrating Sophos XG into ArcSight, I am using Syslog to send the events over to ArcSight and have parsed all events but There is one specific event that seems to have a bug when Sophos XG syslog sends it. Below…

It seems like the iView2 system is getting left behind compared to the XG updates. It's still using the icons on the left side like the XG v15 releases were. It's been quite a while since there was an update for that system. Are there any on the horizon…

Hi, hopefully i'm missing something obvious (although not holding my breath on that) Background: I am looking into identifying the source and type of some unexplained outbound traffic on a network connection, essentially there are a number of…

The system is producing this output below every second as it appears in the advanced shell, it seems that login process is restarting continuously. Feb 3 10:01:00 (none) daemon.info init: process '/bin/login' (pid 20205) exited. Scheduling for restart…

Hi All, XG firewall with 2 x IPSEC connections working. I can access resources either side and monitor them however there are no VPN reports on the reports page. This is also the case for active threat protection. There was an issue where the main…

We have an HA pair of XG430s running 16.01.2 and have created a rule for public Internet access. We don't want to log every site a customer visits but despite unticking the log box it is still logging.

I have a large number of staff that we want to monitor their time spent in the office based on their mobile phones connecting to our wifi, or their PC connecting to the wifi / network. We know the mac addresses of each device, and have specified reservations…