Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • how to bypass SSL/TLS in SOPHOS XG

    hi, i have XG430 , created a firewall rule and selected with following web filtering checks: Block QUIC protocol Scan HTTP and Decrypted HTTPS Scan FTP for Malware Decrypt HTTP during web proxy filtering. SSL and TLS inspection is enabled when user…
  • Unable access specific website even without applying any web/application filter.

    Hi. Unable to access the website www.sbicard.com I used a naked policy without any Web/Application filtering. Also used AllowALL category, but Still I'm unable to browse it. Policy test allows the website. DNS also resolves the website I tried…
  • Importing Exceptions into Firewall Template

    When setting up a new firewall, we import O365 exceptions into the configuration. Is it possible to import all of the Office 365 exceptions into a firewall template? This is the documentation we normally follow to import the exceptions. Sophos Firewall…
  • Sites .gov.br

    Meu Firewall GS107 está bloqueando sites .gov.br. Alguem sabe como faço para liberar isso?
  • Google web exceptions (Just like O365)

    Can anyone point me to XG/XGS configurations or exceptions designed to improve Google Docs performance?
  • How to block all youtube videos from a specific channel

    How to block all youtube videos from a specific channel on 19.5
  • AnyDesk current IPlist for Germany (as it seems...)

    As I had the same problem like in DPI issue with AnyDesk Software described I built up a new IP list for use from Germany. Maybe someone can need it... 212.102.40.164,138.199.14.83,138.199.4.67,177.54.145.75,136.243.81.155,143.244.33.97,216.245.193…
  • Windows Updates fail due to "HTTP parsing error encountered"

    XG 19.5.0 GA. I am attempting to run windows update however the update cannot complete. The web filter log is showing "HTTP parsing error encountered". Windows updates are excluded from HTTPS scanning, zero day protections, and policy checks as the…
  • Some websites get ERR_TIMED_OUT

    Hello I have been looking for this problem for a while now. Support was useless. On 2 different sites, at random moments, some websites are returning ERR_TIMED_OUT . Site https://www.bankinter.com/ or another one point on a server on Azure. …
  • help with DPI

    Hello everyone, I am brand new to Sophos. I have a home license version deployed in my home lab and evaluating to see if I want to move my business over to sophos from fortinet. My issue is I don't think DPI is working. From everything I read, it…
  • gmail Attachments

    Hello i'm not able to download any gmail attachment and i'm already using allow all in web and application policies it was working till yesterday and now it's not and i didn't make any changes can someone please help me?
  • URL Referrer Blocking

    We want to allow access to YouTube search but lock down certain search terms. The way the YouTube search works is circumventing the URL/Content search so XG is not blocking it. If you then refresh the results page it then blocks it. Anyone know how to…
  • Telegram Messenger Not Connecting When Any Web Policy is Active

    I'm needing to allow Telegram Messenger on the network but it refuses to connect whenever a web filtering policy is applied, even if it's just the default Allow All policy. I don't see anything being blocked in the logs. I have tried switching between…
  • Web User notification customization - cannot change top and footer images

    Good afternon, I have two clusters of XGS 2100 running with the latest firmware ( 19.5.0 GA-Build197 ). As per object, I am not able to change the top and footer images of the Web User notification. I tried both with JPG and JPEG (8-bit), respecting…
  • web filtering with advertisements/pop ups logs

    Hello, Guys, I have the following situation: In the user's web filtering logs, I have several records of accesses to URLs that the user did not actually access. For example, in the logs there is an access by user X to a certain URL, and in fact what…
  • Ad Blocking lists

    Sophos is awesome and amazing and like other people here have requested it would be amazing if we could import adblocking lists like this one. https://github.com/StevenBlack/hosts If you can already achieve this could someone please help me. I found…
  • Sophos Firewall blocking my website which is using cloudflare dns

    Hi there folks, I am a new user to the firewall using it because I have many sites of my own and a lot of important data on my PC so after reading reviews I decided to use the firewall to protect all of it from brute force attacks and viruses but some…
  • How to get SSL certificate working for Web Filter notifications?

    Hello there, I just enabled a web filter policy to block various websites, but I'm having issues with the user notification options. I have installed a valid LetsEncrypt SSL certificate and it's working great for the user portal. However when a webpage…
  • How configure SSL/TLS inspection settings for smartphone apps

    Hello there. I am using XG firewall home edition in my house. Some of the iOS apps are not available with SSL/TLS inspection enabled. When disabled, they can be used. I checked LogViewer and in some cases it is Error and in other cases it is not Error…
  • GeForce Now - Not working

    Hi everyone, having some troubles here - running Sophos XG Firewall. Running into a strange issue, GeForce Now is a new cloud based gaming service however, every time I try to access this behind my firewall it seems to have a connection issue. I've…
  • Server did not respond to client hello

    Hello everybody, Even though I apply exclusion settings for some websites, ssl is getting blocked in tls part. I have given all permissions to the relevant website. When I check the policy test section, it shows allow, but I couldn't understand where…
  • No internet access except for Sophos endpoint installer .exe

    Hey, We got our firewall setup as if you don't have sophos endpoint agent installed you don't have internet access. The problem is : you can't install sophos endpoint agent if you don't have sophos endpoint agent installed first because having sophos…
  • Schedules

    I have a rule setup to block certain devices traffic after a certain hour (you know, so kids don't stay up all hours of the night). On the weekend I allow them time until 1:00 AM. In the schedule definition, I can only specify say, 6 AM to 23:59. Then…
  • Sophos XGS2100: massive problems with Web-Traffic

    Dear Sir or Madam, my name is David Lorenz from AAIC Soft Systems GmbH. We have serious web traffic problems with one of our customers with an XGS2100. It's not easy to describe. The customer previously had an SG and did not have these problems. Now to…
  • Guest Network - XG port 8090 (IPS error messages) not accessible

    I have my network segmented and am using web filtering on our GUEST network to ensure that certain content is not accessible to visitors or my kids. I have Captive Portal enabled in Administration on my GUEST network, however; when a someone tries to…