I have the oddest problem with my XG firewall. Everything works fine, with the exception of the MTA passing mail to the backend server. MTA internal IP is 192.168.128.1 - Mail Internal IP is 192.168.128.12 The problem. Mail is stuck in the mail spool…

Hi, I configured the WAF on XGS87 (SFOS 19.5.2 MR-2-Build624), created the protection\authetication policies and applied them on the Firewall Rule. However, when I point the IP address of the published application, the login prompt to enter the username…

Hi folks, this morning's daily report from the XG was lableed as unscannable, though I wa sable to open and read it without any issues. The email scanning firmware has not been updated for a couple of days,so I at a loss to understand the message…

Hi, We are losing our ipsec link after some time. (randomly) Initial connection is ok no problem But in logs we have this message : IPSEC FAILED Couldn't parse IKE message from : X.X.X.X Check the debugs logs ID 18052 If i reinitiate manually…

I have the following system: Sophos XG Home SFVH (SFOS 19.5.2 MR-2-Build624) configured in MTA mode. One mail server Some E-mail Account hosted on Cloud Public Server The problem is that SMTP out mail doesn’t engage Nat rule. See imagebelow…

MO: XGS136/SFOS v19,5,2. Not in production yet, setting up to replace production firewall. BO: XG115/SFOS v19.5.2. In production. MO & BO have had an IPSec S2S running for a long time with the MO production firewall. The MO XGS that will replace…

XG210, SFOS 19.5.2 MR-2-Build624 So, I have two VLANs, VLAN 70 - 192.168.70.0/28 and VLAN 100 - 10.0.0.0/24. DHCP server is on VLAN100, I want to relay DHCP requests from VLAN70 to VLAN100 for service. I have a relay set up like so: Name …

When making any changes to a WAF rule, form based authentications will stop working and throw an error 404. When editing the affected authentication policy and saving the settings, which reloads WAF, the problem is gone. This can be reproduced on two…

4 XG/XGS firewalls, all running SFOS v19.5.1, were scheduled to install v19.5.2 this morning at midnight. 4 of 4 show this in the console-- Dashboard on each firewall confirms v19.5.1 remains installed. I checked the System log on one of them…

I have plan to install new sophos Firewall XGS2300 and while I check Console and upgrade firmware to 19.5.1 in console show. Firmware upgraded Loading network interface drivers...duration 47 Checking for NPU uboot mismatch... Loading Kdump kernel…

Hi All, I am trying to have the following setup on my XG unit. sub1.mydomain.com -> internalwebserver1 sub2.mydomain.com -> internalwebserver2 I have created 2 WAF rules on my XG unit, both of them have the FQDN of the public website in the domains…

our firewall XGS2100 (SFOS 19.5.2 MR-2-Build624) makes connection to: 18.203.200.196 utm-cloudstation-eu-west-1.prod.hydra.sophos.com all Denied with invalid traffic Firewall 2023-05-20 15:34:01 Invalid Traffic…

Now that Sophos have effectively broken .pro configuration files with 19.5.2 by disabling the user portal WAN access after 90 days of no use, i'm looking to migrate everyone to using imported .ovpn files instead. This carries a bit more initial setup…

Hello, I have the problem with an XGS 107 (19.5.2-B624) that a web server (10.203.111.101), which is located behind an IPsec connection, is not reachable via the WAF. When accessing the web server via the Internet, I get the code 503. However, the problem…

Release Post: Sophos Firewall OS v19.5 MR2 is Now Available The old V19.5 MR1 Post: Sophos Firewall: v19.5 MR1: Feedback and experiences To make the tracking of issues / feedback easier: Please post a potential Sophos Support Case ID within your initial…