Hi, We need to establish a multiple site to site IPSEC VPN with a XG86w as the HQ. Both remote sites have a TELTONIKA RUT240 router. I am able to ping from HQ both remote sites, and from each remote site the HQ, but can’t ping a remote site from…

Hello, We are currently using an XGS firewall and would like to give users access to internal resources via SSL VPN. Several SSL VPN policies are available for this purpose. The users are in different groups and these are assigned to different SSL VPN…

I Need help regarding my ipsec. I have two sites HQ and remote site. The firewall is connected through ipsec. I have set both inbound and outboud rules. But am still not able to ping each end of the firewall or to remotely access resources at HQ. Kindly…

My server is Sophos Firewall XG125 (SFOS 17.5.16 MR-16-Build830). Sophos connect works perfectly but the .ovpn file downloaded(via user interface) will not connect. I also used the details from the .tgb to build a config file for strongswan, but didn…

Dear Sophos Support, I hope this message finds you well. We are experiencing an issue with our Site-to-Site VPN setup. While the VPN tunnel appears to be up and stable, we are unable to access the servers that are sitting behind the Azure gateway…

Hi folks, I did setup a remote access IPsec profile with a uthentication type digital certificate. The local certificate was created with a CSR by the firewall with help of OpenSSL under Linux and the remote certificate as described in docs.sophos…

Hi all, in SFOS 20.0.2 MR2 , the VPN portal has new options for download VPN configuration We are using community OpenVPN clients ver. 2.6.12. for windows clients , not using the OpenVPN Connect clients Which configuration we are supposed to download…

I came across a couple of these threads mentioning that commenting didn't work in JSON, but it will as long as you put them in the right area. If you put the comments just outside the child set, then it will import the SCX without an issue. Example…

Sophos XG XGS116 (SFOS 20.0.2 MR-2-Build378) has problems with ipsec vpn. The Sophos Connect client shows "No response from gateway [Adress]" So we took a look on the firewall at "Administration" and "Device Access". Here we have IPSec selected. …

We have a Sophos XGS 6500 and our users utilize Sophos Connect as our off campus VPN client. Recently we ended up with some malicious user or users trying to login to our VPN web portal and locking out many accounts. We turned off the VPN portal, but…

Hi, Good day! I am looking for guidance regarding my network configuration involving two ISPs connected to my firewall. One set as active and the other as a backup. This setup has enabled us to utilize Remote IPsec VPN effectively. I am currently…

Hi all, I want to upgrade SFOS from 18.05 MR5 to 19.5.3 MR3 What will happened with SLL VPN users ? Are their SSL VPN certificates will regenerate and they have to download new SSL VPN configurations, or not? thanks,

hi all, when i go on my SSL VPN portal to download my SSL config i get this message everytime i try to download it "failed to download the file if the problem persists , check with IT" thanks, rob

we are getting issue with our users in russia with the Sophos VPN Client. we have tried re-installing the sophos vpn client on the device but the issue still remains the same , error code : received connection reset from gateway. connection is established…

I have this really strange problem where SSLVPN connections crash after 6pm. Setup as a full tunnel and works fine throughout the day and then at night time everything just dies. When first connecting to the VPN everything works fine for about a minute…

Hi, I have configured the tunnel from DC to another location, The tunnel couldn't established. I don't know what is the reason the tunnel has down. I have debug the issue still unable to find out the issue, please assist me to resolve the issue

Hello, Recently one of our clients contacted us about purchasing some new Sophos firewalls. They had some VPN settings on their old Meraki firewalls. We have the VPN settings now, but it seems like most of these settings don't even exist in the Sophos…

Hi All - ive had this issue for over 2-3 years now - when trying to make changes on site to site vpns - either the changes take long to apply, dont apply or need to apply several times. i try to change local ID for example on an existing site to site…

We use Remote acces VPN with our XGS2100 (SFOS 20.0.2 MR-2-Build378) and Sophos Connect client. All VPN Connections disconnect after 30600 seconds oder 8,5 hours. In the Profile we do not have any lifetime or margin set to this value. Phase 1 Key…

Hi, I have a bunch of XGS firewalls in main offices of my customers, which have branch/remote offices with Draytek routers, different models. I have not paid attention till now, when one of those reported intermittent issues with Site2Site IPSec VPN…

Sehr geehrte Community, ich habe ein Problem mit iPadOS und der IPsec-VPN-Verbindung in Zusammenhang mit der Telekom. Beim Versuch, einen VPN-Tunnel von meinem iPad aufzubauen, gelingt dies nur unregelmäßig. Lediglich (geschätzt) 2 von 10 Verbindungsversuchen…

Hello, I have a problem with an ipsec Site to Site tunnel. The tunnel is being built, but no traffic is going through the tunnel. The remote station is connected to a router via LTE and a Dyn DNS entry. I checked local and remote subnets. The firewall…

Hi I need to translate packets between an ISec and a RED 20. There is an IPSec tunnel with 172.18.10.0/24 on the remote site and 172.26.143.1/24 on the Sophos. I have a RED device with 192.168.54.1/24. I would access form REDs subnets hosts (maybe…

Greetings fellow members, I have 2 networks with 1 sophos firewall each, network A (Public IP/80.80.80.128, Local Network/192.168.20.1/24) and network B (Local Network 192.168.10.1/24). Sophos B XGS107 ( SFOS 19.5.3 MR-3-Build652) Sophos A XG135…

Really strange, it used to work and I could use the interal web proxy on port 3128 when connected via SSL-VPN (not "full gateway", only my LAN network is routed via tunnel). Since a couple of months that is not working anymore. Tried checked different…