Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • L2TP slow on XG

    Hello Community, I'm migrating from a SG550 (UTM) to a new XGS5500 (SFOS 19.5). Both firewalls connected to the same ISP. If I connect to the UTM via L2TP I can copy a file via CIFS with around 5 MB/s, which is almost equal to the bandwidth of the client…

  • IP SEC site-to-site terminates and establishes every 2,5 minutes

    Hi, IPSec Client-SA is deleted every 2,5 minutes. Main-IPSec-SA stay avtive. System: XGS v19.5 2023-01-26 15:58:42Z 20[NET] <STATION010-1|4> received packet: from 109.40.222.222[41135] to 111.222.333.444[4500] (1236 bytes) 2023-01-26 15…

  • Rock Solid Site2Site crashed after upgrading from 18.5.3 to 19.5 GA on Both Sides

    Hi, I had a S2S VPN between a XGS2100 (18.5.3) and XG125 (19.0.1) After upgrading both Sites for 19.5 GA the VPN connection crashes 2-3 times a week. The VPN is up and connected, but no traffic is routed from S2S, only a manual disconnect and reconnect…

  • Powershell add and remove Users in SSL VPN Policy via API (Enable/disable SSL VPN Policy)

    Hi, I want to to add and remove Users to/from an existing SSL VPN Policy using an API call on the XG via Powershell. I am using SFOS 19.5.0 GA. The API Documentation and some code I've found online are not very helpful. Can anybody tell me how…

  • L2TP Pool too small / Allow leasing IP addresses from RADIUS

    Hello Community, we have many L2TP-VPN Users and the /24 IP Scope is too small for all our VPN Users. If I read the documentation right, it is not possible to use a lager pool then /24. For us a /23 Pool will fit. Actually, we use a mix of SSLVPN and…

  • TLS engine error: FLOW_TIMEOUT through IPSec Remote Access Tunnel

    Hello community, we are facing a strange behavior since we´ve updated our XGS4500 to SFOS 19.5.0 GA-Build197 . Some website are not fully accessible through IPSec Remote Access Tunnel (via Sophos Connect Client). The first line of the above SSL…

  • How to setup L2TP Client VPN and OSPF routing in SFOS 19.5?

    Hello Community, I have a working L2TP VPN dialup and a working OSPF routing over our site firewalls. From the L2TP network I can reach all local networks (connected to the firewall itself), but I can't reach any network in the site locations. I figured…

  • SD-RED connection problems

    Good day, we have seriously connection problems with a SD-RED60. It works fine till the connection gets interrupted about once an hour for mostly 3-4 minutes. After the interruption, the connection works again fine. Both WAN IP Addresses are available…

  • Connection could not be loaded

    We had problems using the SCC when connections close unexpectedly after about 60 minutes. So we have changed the settings in the IPsec profile. We have changed the key life in phase 2 from 3600 to 36000 and have changed the dead peer detection to re…
Unfiltered HTML