Hi.
Many thanks for reading this, I am hoping someone may be able to throw some light on what I am trying to achive. I am new to the Sophos XG platform but I assume what I am trying to do is possible.
Here is my scenario.
Two companies in the same…
I am seriously getting irritated with the Home Edition Sophos XG lately.
First, enabling WWAN broke the install. As soon as the server booted after enabling, no Ethernet devices would work. Not even a "factory reset" fixed it. I have to completely…
Hey Guys, really starting to get frustrated with our new network configuration and cant see the problem.
We are in the middle of migrating two branches together and built in a sophos xg 210 in the smaller branch. We have a WAN Link from our ISP and…
Hi Everybody,
i want to connect two Sophos UTM-Cluster ("DMZ-UTM-1" & "DMZ-UMT-2") via OSPF to an external Partner. Reason is that i want to connect two local Servers "SRV-1" & "SRV-2" with 2 external Servers ("EXT-SRV-1" & "ESX-SRV-2") with full redundancy…
Hi,
I would like create ipsec tunnel with remote site, in local subnet i add my five network and in the remote subnet i would like have "any"
When i mount the tunnel, i have 5 of 5 IPsec SAs established but after i have internet issues i can't acess…
Hallo Zusammen,
ich habe ein Problem.
in einem Kundenkonstrukt habe ich 3 Sites mit jeweils einer utm. Diese haben alle unterschiedliche Netze... UTM1 z.B. 192.168.1.x UTM2 192.168.2.x und utm3 192.168.3.x
UTM1 hat ein SSL Tunnel zu UTM2
UTM3…
Hello,
I saw already the DNS Best Practice Article and UTM Help Section, but still have questions how to change my DNS Server correctly. At the moment I use the utm as dns server, and I have already created all my internal devices as host objects with…
Hello.
I have 2 sites with 2 ISP each other: Site 1 (ISP A, ISP B), Site 2 (ISP X, ISP Y). So I think to config 4 tunnels like we did with Site-to-Site IPsec VPN:
Tunnel A-X, Tunnel A-Y, Tunnel B-X, Tunnel B-Y.
Site 1 publish this networks (192…
Dear Team,
We configured rules for destination zone to source zone and vice versa for both vlans. But doesn't worked. The same configuration was working with 17.0.5
So I’ve been trying to figure this out and i really am struggling and I have rang sophos a few times and well been met with a quick dead tone of the phone :/
so we have our main switch which is HP 5400zl series switch and our utm and then from utm…
Hi Leute,
Ich habe ein SD-RED 60 Device im VLAN-Mode (ich brauche 4 VLANs am Remote-Standort). Dieses läuft einfach an einem klassichen NAT-Router via V-DSL (z.B. FritzBox - kein exposed Host).
Die SD-RED 60 ist wie folg eingerichtet (standard/unified…
Grundinfo: SG125w (FullGuard) mit 4 APs lokal, 1x RED15w (funktioniert), 1x SD-RED 60 (funktioniert nicht), 1x APX-320 hinter SD-RED60 (funktioniert auch nicht)
Die Grundfirewall läuft seit 3 Jahre ohne Probleme durch und wurde immer wieder um RED-Devices…
I have 2 firewalls. Firewall A is a XG and Firewall B is an SG
A ---- B
IPSEC Tunnel
On A x.x.x.x/24 can ping on B x.x.x.x/24 and vice versa
However on the A side if you browse to the webpage of that device such as a esxi host or synology…
Hi, Please see my network diagram attached here. I have Head Office and Branch office connected by a point to point link. Cisco router is connected at both ends for routing on point to point link. Head Office LAN Switch Subnet 192.168.1.0 is connected…
Hallo Community,
wir migrieren gerade von einer SG zur XG. Dafür haben wir zwischen Core-Switch, SG und XG OSPF eingerichtet, mit der Idee nach und nach alle Netzwerke umzuziehen.
OSPF an sich funktioniert soweit, alle Netze werden ordnungsgemäß redistributiert…
Hi folks. Im a learning Technician in Sophos XG and i need help with this request.
Acctually we have a Sophos XG FW 18.0.1 and we have a software provider where we access a particular software in one server.
The service provider has allowed the traffic…
Hi everyone,
I'm trying to do something new to me, and I'm loosing in it...
I'm trying Windows Virtual Desktop so with a partner have configured vpn site-to-site from my main office to Azure. It's works as aspected, I can ping from my local network…
sophos A (10.128.1.1) -> VPN -> sophos B (10.1.122.1 / 255.255.0.0) - LAN - host B 10.1.3.153 (255.255.0.0 / gateway 10.1.1.3) - gateway (10.1.1.3)
- sophos A can ping host B but cannot ssh host B - sophos B can ping / ssh host B - host B can ping …
sophos has PORT 1 and PORT 4
PORT 1: 10.1.2.42/255.255.0.0
PORT 4:10.1.122.1/255.255.0.0
a windows PC default gateway set to PORT 4 (10.1.122.1). but traceroute from PC to external host shows that gateway is PORT 1 (10.1.2.42)
why? any wrong setttings…
Hallo miteinander,
von unserer Hauptniederlassung (Site A) kam die Anforderung die bestehende VPN Verbindung zu uns (Site B - Sophos UTM 9) durch eine MPLS Verbindung zu ersetzen.
Folgendes Szenario:
Unser Netzwerk (Site B) bestehend aus div.…
Hallo zusammen,
ich hatte in einer kleineren Umgebung mit drei Netzwerksegmenten das Problem, dass RDP Verbindungen über das Gateway (SOPHOS SG135) hinweg sehr langsam sind, bzw. in einer Schleife mit der Meldung "Versuche Verbindung wiederherzustellen…
Hi there,
I have two internal LAN networks on two ports. (Ports 1 & 4)
I have an internal LAN-LAN rule with all filtering/scanning disabled. Logs show all traffic to the 192.168.100.0 network is allowed.
From PCs on the 192.168.1.0 network I…
Hello all,
We are in a migration process to a new LAN installed, on our building, moving from a Ubiquiti Unifi Network, to a FULL HPE Aruba Network.
For now we would like the old equipments, to contact the new equipments on the NEW LAN, before we…
Hi to all Sophos Experts!
I would like to share my experience with my SOPHOS XG86 Firewall. I tried to create a new firewall policy after updating the firmware to v18. I did some test and I encountered a weird issue with routing wherein when I selected…
I've been having an issue with V18 MR-4 for some time now and really can't seem to figure it out. I have a workstation 172.30.30.104 attempting to ping a printer 172.20.20.30. As you can see in the capture below, the ping reaches the printer and it attempts…
