Hey, is there a possibility to set up MFA for SSL VPN on the XGS 3300? Maybe even a SAML authentication with the MS authenticator? Can't find any infos on that in the documentation, neither can i find an optiuon the the admin panel. Can anyone…

Hey everyone, I was recently given a SG115 firewall to mess around with and installed SFOS on it. While learning how to use it I've setup an SSL VPN connection that works on every computer except for my work laptop, which oddly enough is able to connect…

Hi team, is it possible with Sophos Openconnect to only execute the Logon Script after successful vpn connection (using the .pro file)? Or is it also possible to run any custom script or command? I read the articles and if I did understand correct…

Hello, we build a Sophos Connect Provisioning File for our XGS 3300 on FW 20MR1. We have the following Problem. If the Users "starts" the provisioning File and Enter his Credentials for log in, he gets an UserAuthentification error - with the Correct…

Hi there, I´m refering to this thread: Unsatisfactory implementation of provisioning + OTP in Sophos Connect client Is it still not possible to SETUP OTP during first Sophos Connect Login? Is it still necessary to have all users connecting to…

We have a XGS210 using Sophos Connect and SSL VPN. After 8 hours users are getting disconnected. There has to be an authentication time out that is set for 28,800 seconds but I can't find it. Can someone point me in the right direction? I'd like to increase…

Testing Microsoft Copilot+ Windows 11 laptops based on Qualcomm Snapdragon ARM CPU - Lenovo ThinkPad T14s G6 snapdragon in my case. I have seen old forums mention that ARM support was in the backlog for Sophos Connect. I suspect this question will come…

HI - Time sensitive here, back against the wall (will pay outside consultant if needed). Sophos Partner, long out of the loop. I have (2) REDS. Both are reachable from main XG network. I am unable to reach the RED hosts from the SSL VPN. REDS are in…

Hello, I verified that my Sophos XGS SFOS 20.0.0 GA-Build222 has OpenVPN 2.4.7 which is vulnerable to CVE-2020-20813 which according to NIST has a high level. As I use SSL VPN for remote access, I need to know if my firewall is vulnerable. Best Regards…

Dear Support, If having XG210 ( SFOS 17.5.15 MR-15 ) with SSL VPN pattern current version ( 1.0.008 - 05:32:30, Sep 11 2020) Using the web interface, can a manual pattern upgrade to the version ( sslvpn_1.02_1.0.009.tar.gz.sig ) occurs without any…

HI all, Hoping you can help. Recently an external website we access has been updated and hosted elsewhere. Following the move we now get the following error but only when connecting via the VPN (Remote access). We can browse to the site without issue…

Hi I have customer with SSL VPN working fine 99% of the time. However users cannot connect from the same WAN subnet. Ie say the WAN IP of the XG is 85.85.12.5/27 If a user tried to VPN from anoter network which is on the same ISP (ie 85.85.12…

Hi, I've deployed doznes of SSL VPN clients, having DNS set to on-premises AD LAN DNS server 10.1.1.10 in General SSL VPN settings for all clients. Now when client with laptop connects to SSL VPN, I can see his/her default DNS resolving goes through…

Hi. I just recently changed my SSL User account on Sophos, and after that, I can not access Sophos through SSL VPN and receive "received connection reset from gateway" on the Sophos connect client. When I log in to the user portal to download the new…

Hi, i have the same Probleme like mentioned here Not able to connect SSL VPN but i am not able to find the setting he has changed in the xgs menu. ( i did already all Troubleshoot steps, even have compared all settings with another xgs device…

Hello everyone and thanks in advance for your support. We have a person 192.168.1.X who connect to OUR network (192.168.0.0/16) via SSLVPN (Use tunnel as default gateway or not, doesn't make any difference) Sometimes things go wrong randomly (i…

I am having an issue with an HA hardware pair. When the secondary node is the master SSL VPN users cannot connect with a remote VPN. Please help me on it.

Dear Community Members, I am immensely grateful for being part of this wonderful community. Could someone kindly provide guidance on how to upgrade SophosConnect_2.2.90.msi to SophosConnect_2.3.0.msi using Group Policy (GPO)? Alternatively, if there is…

Hello, We have an application that requires reverse DNS lookup. When users are on SSL VPN they are getting a new IP address via dhcp on the firewall frequently and the Ip Address does not get a PTR record created in the reverse lookup. I've seen…

I'm dealing with two stubborn workstations that are giving the "Service Unavailable" error in Sophos Connect when used with SSLVPN. This is a brand new deployment, everything is fresh. The services appear fine and if I switch the Windows user to a different…

Buenas tardes, Me pueden ayudar por favor con algún comando o instrucción para forzar la desinstalación de la VPN "SSL VPN Sophos (Semáforo)" de forma desatendida (Remota) en 150 equipos para luego actualizar e instalar a Sophos Connect, Muchas gracias…

Case is not resolved. Please open the case. Sophos team has migrated cyberoam to Sophos firewall & Its working properly from last 3years with Cyberaom certificate which expiry is 2036. The issue is Sophos connect 2.3 is not working but 2.2 & 2…

Recently, I had a problem with a client and their VPN. I noticed that when connecting to the VPN using Sophos Connect, all the DNS requests I make are resolved by the XG. In other words, when I run an nslookup google.com while connected to the VPN, the…

We are experiencing a very strange effect with the Sophos Connect 2.2.90 client We use SSL VPN connections for users. Users load the profile from the user portal and import it into the client. The connection works fine, but when the user switches networks…

I want to deploy Sophos Connect 2.3 to a group of computers before we install the firewall at the site and push the provisioning file. File is easy, but the GPO to install the Connect Client, while applied to the computer, never installs. We have a company…