Hi, we have a Sophos XG210, SFOS 19. We set a site-to-site VPN tunnel to SAP with the parameters they gave us. Locally, we have the network 10.X.X.X and 192.168.X.X (we are migrating to all class A), and SAP 10.100.0.0/22 & 10.100.4.0/27. The tunnel…

Hello All We are facing issue with SSL VPN with frequent Disconnect. It is affecting our Day to Day work. 300-400 people are depended on vpn. Kindly help to solve this issue. Model = XG310 Firmware Version = SFOS 19.0.0 GA-Build317 Thank…

I have routed based ipsec tunnel between head and branch. At branch I have a network on the firewall where I want a dhcp-relay that relay to a dhcp server at the head office. I need routed-based (as opposed to policy based) for OSPF. over 2 years later…

Hi, Is there a way to set the MTU for the IPSec Remote Access VPN on an XGS2300 v19? I'd like to se if tweaking it improves performance for my remote users. Thanks, Jeff

Hi Guys, This is after 2 months of troubleshooting, escalations, helplessness from Sophos support, i'm writing this. I have this issue since we deployed the new XGS 4500 firewalls and still not able to resolve this. One of our core application is hosted…

Hi, I got a Remote Access IPSEC working on an XGS2300 (v19). It worked but was unusably slow. Sophos support suggested I disable "Use as default gateway" and explicitely add resources VPN clients could see. I want them to see the entire LAN, and the…

Hi everybody, We're facing this weird issue on a Sophos XGS 3300 (SFOS 19.0.0 GA-Build317) when we try to connect from remote site via Sophos Connect, I tried to unlock by hand the ports, remake the policy but nothing happens, even called to the ISP…

Hello, i am experiencing strange behavior of VPN clients after my A/P cluster XGS to v19. In VPN ssl global setting i have subnet 10.200.250.0/22 for my clients. But rundom VPN clients receive ip 10.200.248.xxx i have try to re-aply VPN ssl global…

Hi, I have a doubt about a pop-up in the vpn configuration menu. My current firmware is: SFOS 19.0.0 GA-Build317 When i click to save button on the vpn configuration, i have the same pop-up: "the change will update the pre shared key of the all connections…

Hi all, I still struggle with going from 18.5.2 to 19.0 on my XGS116 as there are too many issues but I tested v19 as VMware appliance. In my test scenario I used SSL VPN and checked up and down speeds from the remote client. According to the first…

Hi, Ive got an XG3100 on SFOS 19.0.0 GA-Build317 I'm a little confused on two things on SSL VPN users and would be brilliant to have clarification as no doubt im being a numpty. Some information ive changed for security like domain.local isnt the…

Hello all! Anyone ever had an issue where in the user portal when downloading an SSL VPN Configuration you're clicking on "Download for Windows, macOS, Linux" and what's downloaded is a 1 KB ovpn file. When opening this file in notepad it displays…

When setting up ipsec tunnels between various xgs we see an issue where if using tunnel interfaces with traffic selectors we cannot access the admin 4444 page from another office. SSH and ping work fine so the routes are working . If we use site to site…

We have 20+ Xg and XGS's deployed. We started pushing out the mentioned version updating from 18.5.3 MR-3 Build 408. The first 2 devices we updated had all kinds of VPN issues. Users could connect but the connection speed was garbage (less than 1mbps…

I'm trying to figure out a issue we've had for a while using Sophos Connect IPSec connections. In general small file transfers (say 5Mb or less) from a client to a file server happen very quickly, within seconds as expected. But larger file transfers…

Dear all, We have a problem contacting a subnet since the version 19.0 GA. When we are connected to the IPSEC VPN since the upgrade, we get INVALID TRAFFIC randomly, and not on all networks. The problem only appears on networks that are connected…

Updated two XGs this weekend (June 4, 4PM) XG115, XG106) to SFOS 19.0.0 GA-Build317 . Since the update seeing and receiving alerts of random but continuous termination and re-connection of a Site to Site VPN between the two XGs. Alerts: VPN Log…

Hi, I have an email alert saying that my RED was down. Its a RED 20 connected to my XG 125w Firewall running the latest v19 firmware. I thought it would just show as down when logged into my firewall and viewing the RED interfaces but its actually…

It may be a coincidence, but just after upgrading to 19.0 our Remote VPN users are unable to download or upload to server files over 1MB. It is throttled or something and times out. And the remote user has to disconnect the VPN and reconnect. Users are…

I am managing a nas (Unraid) that doesn't have permanent IP, or Dynamic IP. In order to manage the device, I installed Openvpn-client onto the NAS, and put my Sophos' remote SSL VPN config on Openvpn-client. The client can now connect to my firewall,…

I'm using Sophos XG 4500 v19 and we have noticed that connections to SMB servers when using Sophos connect remote access with default IPSEC profile are slow and unresponsive. DoS protection is off and we are not using traffic shaping. Any Ideas…

Bonjour Sur un XG230, la mise à jour 18.5MR3 vers 19.0GA a été proposée dans la mise à jour de firmware. J'utilise plus de 50 clients en connexion VPN SSL Aucun soucis en version 18.5 MR3. Je ping bien IP serveur de destination, aussi bien par…

SSL VPN does find host after update to SOPHOS 19.0.0

Hey guys I have a very odd issue. Loaded V19 last night to my XG450 - all loaded fine and seems OK today - until the Remote users started raising tickets that some sites wouldn't load. I cant work out why... - They loaded before V19 - the…

We're currently on v18.5.3 and have approx 70 users with IPSEC Remote Access. One of the big improvements for us in v19 is the Custom IPSEC RA policy, and the adjustment of re-key times. After we upgrade to v19; Will all current IPSEC Remote Access…