Browse By Tags

  • [Fresh From the Press: Latest KB's] Sophos UTM: IP Addresses and Domains for version 9.3 and above

    Hey Community, This useful KB article lists the names and IP addresses used by Sophos UTM services. This list may help network administrators identify and allow traffic from the UTM to the internet when located behind another firewall or proxy. Best…
  • How to automate sophos configuration?

    We are using cloud sophos utm ver 9.506-1 on AWS. We have setup the sophos vpn as the gateway to our AWS VPCs. We configured SSL VPN to allow users access to specific resources in specific VPCs. Whenever we add or remove AWS VPCs we need to log into the…
  • SNAT For Radius via IPsec

    Hello All! Does anyone know why a SNAT rule needs to be configured for Radius when sending the traffic over a IPsec connection? To my understanding IPsec should simply encapsulate the packet and send it out the of the WAN interface with a destination…
  • Dynamic AD group for computers to be able to access limited internet???

    OK, here is my dilemma. I have my AD setup the way I want. When I do Lite Touch, and Zero Touch deployments with my MDT servers, the tasks place the computers in specific OUs based on the role the computer deployed is going to do. I have GPOs that apply…
  • Site to site vpn ssl ping

    So I have successfully been able to establish a ssl site to site between two offices. I have added the local networks from each site to the ssl config and can see the firewall rules have been auto added. However I'm not able to reach some workstations…
  • When would be UTM 9.507 or UTM 9.6 released?

    Hi, when do you expect UTM 9.507 would be released? Do you think UTM would recieve mitigation against Meltdown and Spectre with the next updates? I hope a UTM 9.6 or 10 would be developed, what do you think? UTM hasn't got updates for more than…
  • Is it worth upgrading UTM9.5 to XG

    Hi, we are currently discussing about migrating our Sophos UTM 9.5 to Sophos XG v17 Firewall. So could you recommend upgrading to XG under following demands on the Firewall? Good filtering of malicious Websites Good indentification of application…
  • Experience with UTM Syslog Message in Azure OMS Log Analytics?

    Hi, I have a lot to do with Azure and I'd like to write the syslog of my UTM at home in my private OMS Log Analytics. ( https://azure.microsoft.com/en-us/services/log-analytics/ ) I'm a little surprised that I have not found any information on the…
  • How to retrieve ACT KEY for SG105

    Hello to all, I cannot activate subscription on mySophos for sg105 because I do not have the ACT Key for this device. How can I activate the purchased FG1A3CSAA Subscription on this device? It is it possible to retrieve the ACT Key again?
  • How do i get my Sophos Home UTM Setup?

    Basically, i installed Sophos UTM Home onto my UTM220, and followed the basic setup, however after this when i added extra Ethernet interfaces in "interfaces" they wouldn't work. To be honest i dont understand how to setup the firewall, and i need help…
  • Sophos UTM with SPX issue with Mail attachments

    We have recently implemented SPX on the UTM, running 9.505-4. The encryption is working fine on emails and sending and arriving OK, but if we add an attachment to the email then it is removed by the time it arrives with the recipient.
  • Bridge to VLAN - How to setup your UTM?

    Hello, I'm very tired of searching the web for an answer to my issues with my Wifi setup on my Sophos UTM. What is my setup? Sophos UTM 9.505-4 AP-55 What is my goal? Creating two SSIDs: The users of SSID A can access the internal…
  • Certificate Error

    We get the following error when browsing some sites And in chrome we get a Your Connection is not Private error. Then first thing we did was to look if Https Scanning was turned on but it is not from what i can tell. We have tried putting in…
  • IPS blocking VoIP Packet

    We recently discovered that our UTM was blocking packets that we needed for VoIP. RTP packets were being discarded because IPS detected a UDP Flood Attack. The issue was difficult to find because the UTM was only discarding a relativly small number…
  • Looking to buy the SG-105 but first I have a few questions

    I'm looking to replace my current home UTM solely because I just upgraded my broadband to 200Mb/s. I can afford the SG-105 and possibly the SG-115 but that's about it. 1) Does the SG-105/SG-115 "base appliance" include the "Essential Firewall Edition…
  • [Fresh from the Press: Latest KB's] Prevent guest network from accessing internal network when using the web proxy

    This KB Article provides instructions on how to utilize Website Tags to secure resources in your network while still allowing Internet access for your Guest Network. 1. Create a Website entry for the protected network's CIDR range 2. Add a tag to…
  • HOW TO - Outlook Web Access + Exchange Autodiscover + Outlook Anywhere with only one domain name

    Hello I have a big problem I need to create publications for Outlook Web Access + Exchange Autodiscover + Outlook Anywhere with only one domain name I have certificate only with one name - mail.domain.com Can you help me with detailed manual?…
  • UTM9.5 as OpenVPN Client to an Open vpn Server and killswitch

    Hi, I have the following problem I have a side (with a dynamic WAN ip) of which I want to route all traffic to an open VPN server. I want to connect a UTM 9.5 as a client to that server. And I need a kill switch aka fw rule that makes sure that if the…
  • Spam Marker not applied - spam action: warn - mail quarantined

    Hello, I have a problem, setting a Spam marker. Its not working. All mails are still quarantined. They should be delivered but with a Prefix in Subject. I set global spam action to warn, before it was "quarantine" Spam Marker is: *SPAMVERDACHT…
  • [Fresh from the Press: Latest KB's] Sophos UTM: How create IPsec Site-to-Site VPN with X509 authentication

    This KB article provides a step-by-step on how to setup a site-to-site IPsec VPN using X509 certificates: Cheers, Karlos
  • Combine Sophos UTM 9.1 (Free Edition) Firewall with Mikrotik Router at the Perimeter of Private Network

    Hi all: I have implemented a Mikrotik RB2011 series router/firewall that works great with the exception that I have realized the Mikrotik firewall is very lacking compared to the UTM firewall that was on the old Fortinet router/firewall. I'm thinking…
  • UTM 9.5 AD sync to grant access to internet

    Hi Team, I have installed a Sophos UTM 9.5 and it running perfectly. I have enabled web filtering and created firewall rules as well. Now our company wants to block internet for all the users except for one group on the AD. I would highly appreciate…
  • Azure VPN - dropping connection

    Hi everyone, I've followed the instructions indicated for sophos - azure vpn and it works well - except for the fact that I get packets dropped every few minutes. For example, if I run an RDP to a server on the auzre platform, my RDP session will…
  • How can I make network definition a member of network group using RESTful API?

    Hello, My restd version is 1.2.1 on UTM 9.505004. I can make a new network definition using API, but I can't find API way to make this network definition a member of existing network group definition. Any ideas? Regards, Jan
  • I can see why an email is tagged how spam?

    Hi all, i'm using a sophos utm SG430 v.9.5, i'm trying to find on smtp proxy log why an email is tagged how *** SPAM *** (a spam level?) but i don't know where i must search, this is an example: 2017:11:13-14:15:12 c2 exim-in[31676]: 2017-11-13 14…