Browse By Tags

  • XG v19.5 IPv6 DNAT not Working? See Below (src-ip = dst-trans-ip)

    2023-11-28 21:19:50Firewallmessageid="00001" log_type="Firewall" log_component="Firewall Rule" log_subtype="Allowed" status="Allow" con_duration="134" fw_rule_id="62" fw_rule_name="DNAT to Spiderman (IPv6)" fw_rule_section="Local rule" nat_rule_id="4…
  • NAT session limitations on SOPHOS

    hi, if i have a firewall with one isp. if i configured port1 as lan and port2 as wAN and configure public ip over it. i configured a Firewall from LAN to WAN, and NAT MASQ rule. then all my users will start going to internet by using port2 IP. my questions…
  • Management Port and Control Centre Status

    Hi. Does anyone know if it's possible to exclude configured network interfaces from the coloured interface status icon on the home page of the firewall? Its purpose is to show at a glance of connectivity problems. However, sometimes it is normal for an…
  • System Traffic NAT

    Dear community I would like to ask a question regarding the system generated traffic. We have founf this article in order to SNAT the system generated traffic: https://support.sophos.com/support/s/article/KB-000035607?language=en_US We have…
  • Wan Port Automatic down of sophos xgs 2100 firewall.

    Wan Port Automatic down of sophos xgs 2100 firewall. what is solution.
  • Problem with download speed

    Hey, I have Sophos Firewall for Home installed on my proxmox. I have a 500Mb/s download and 100Mb/s upload connection. Unfortunately when downloading anything from the internet the maximum speed I can download at is 20MB/s it gets to that 20 and is unable…
  • Connection between Unifi Dream Machine and Sophos XG Home for dynamic traffic filtering.

    Hi All, I would like to connect my Unifi Dream Machina Pro (UDMP) router to Sophos XG Home (SFOS 19.5.3 MR-3) installed on a separate computer with two LAN ports. What I want to do is not obvious and I don't know if it's even possible. In general, the…
  • Sophos Application Traffic Shaping

    Hello Guys, I am trying to configure different traffic shaping rules for the same application category , but I am encountering some difficulties. because only option i see is default traffic shaping for applications. I was wondering if you could kindly…
  • (S)NAT for IPSec Tunnel with a remote network in public IP range

    Hello, I need someone to help me across the road: I have a IPSec Tunnel (networks are just examples): Local network 192.168.100.0 /24 <-> Remote network 192.168.200.0 /24 I have also additional local networks: 192.168.1.0 /24 192.168.2.0 /24 192.168.3…
  • 1:1 SNAT Nat possible with Sophos XG

    Hi, we migrated our SG to an XGS. After this we have the problem that we can not migrate this 1:1 NAT map source rules: www.sult.eu/.../ We use this rules to forware a IPSEC VPN remote network to an XGS headquarter firewall transfer network and from this…
  • Sophos XGS126 Firewall WAN Traffic

    Hi everyone, There is a wan1 and wan2 line on the sophos firewall. Wan1 should work during the day and wan2 at night. How can I do this?
  • XGS2100 RED Full NAT

    Hello, our customer has an XGS 2100 HA installation with currently two REDs. So far it's going very well. Now our customer has taken over three additional locations and would now like to connect these to the internal network with the XGS RED environment…
  • Wireless not working through SFVH firewall

    Hello, So I'm running SFVH (SFOS 19.5.3 MR-3-Build652). The firewall is running on a VP2410 mini PC. My Asus router is 'bridged' to this unit and everthing works fine with one exception: The WiFi on the Asus is somehow being blocked by my Firewall and…
  • Unabel to NAT Remote access VPN IP to internal network IP

    Good Day, Am trying to NAT our Remote Access VPN IPs to internal network IP's without making any changes to the Remote Access VPN. I can change the IP assigned by Remote Access to the users when connecting to the Sophos VPN but don't want to change…
  • WAN port2 has number of public IPs. All work except one!!

    So, I have Port2 and 4 as WAN interfaces. Port 2 is the main interface with multiple public IP addresses assigned to number of services. Life was going just fine until month ago when one public IP address stop working! You can't ping it from outside the…
  • NAT Rule not working

    NAT rule is not working. Tried both ways (DNAT / Firewall+NAT Rule). My WAN interface named BSNL and LAN interface is on Port #8..
  • Route all Netflix traffic through VPN

    Hello, Hoping I can get some help - tried searching but its still not 100% clear to me so hopefully someone can provide some insight. LAN > multiple ports , 1 feeding a linux box which has my server that handles things like plex etc AP device > feeds…
  • Traffic wird Denied obwohl es erlaubt ist

    Hallo, wir hatten gestern einen Stromausfall und seitdem geht ein Teil der Telefonie nicht. SIP Module ist ausgeschaltet. Regel habe ich auch einmal neu gemacht. Es ist eine XGS126 (SFOS 19.5.2 MR-2-Build624). PCAP funktioniert leider nicht zeigt…
  • Can't establish HTTPS connection - INVALID_TRAFFIC

    Hi all, I'm struggling with an issue since few days. I'm using SFOS 19.5.3 MR-3-Build652 and I can't establish a TLS connection between two hosts on different VLAN. I've a firewall rule that allows the hosts to communicate each other, the first…
  • try to open port to CCTV

    Hello guys, Im struggling on this case: I want to open port ( 37777/tcp ) to get acess CCTV from exterior like a phone, tablet or computer. This acess is from Public IP ( WAN ) so i create the service ( print1 ) After that i create firewall…
  • DNAT rule only works for http

    Hi I finally setup my sophos XG 106 I have a WAN/LAN/DMZ and WiFi Zone. WAN use PPPoe Passthrough In the DMZ zone I'm currently running an docker host with some container. I created a DNAT rule to access one of the container running on Port…
  • QoS question

    Hello guys! I attempted to mess around with Traffic shaping settings and something seems off. Perhaps I am misunderstanding something so I thought I should ask For starters my internet connection is slow. I actually have two internet lines, one goes…
  • Managing Data Volume or Gateway Speed on XGS and Sending Email Notifications

    Hello everyone, One of my clients has an XGS Firewall, and their gateway is an LTE router with a SIM card that provides 80 GB of data volume per month. When the data volume is exhausted, the client experiences poor internet speed, making work difficult…
  • Usage oriented Traffic Shaping configuration

    Hi, We got a query from our client regarding Traffic Shaping configuration on the firewall as below, Policy association: Rules Rule type: Guarantee Guarantee – limit: 256 to 6400 KB/s Bandwidth usage type: Individual Please advise on the below…
  • Sophos Firewall Gateway Problem

    Hello everyone, I have a Sophos Firewall behind a Fritzbox 6591. The Fritzbox now serves only as an internet interface. The Sophos is running as a VM on Proxmox and is also set up as an Exposed Host. My issue: The firewall loses its connection to…