Browse By Tags

  • Sophos SSL VPN with Sophos Connect with MAC (arm M1 M2 M3 architecture)

    Hi, we cant geht Sophos Connect Software on a MacBook Pro 2021 macOS 14.4.1 (with M1 Chip) imorting the SSL VPN .opnv Files Error: can't parse the file we tryed to change the Config removing: comp-lzo yes adding: compress lzo according…
  • Sophos Connect SSL warning message

    This message pops up when I try to connect. We have other people using the same setup without issue. Is there something wrong with my config file? It does connect, but it needs to be secure. My Config file looks like this: [ { "gateway": "REDACTED…
  • NOT RECEIVING THE INCOMING TRAFFIC FROM VPN TUNNEL

    Hello guys, I really need your help i am facing the challenge since am not receiving the traffic from remote machine i have attached the captured traffic and denied logs from the specific machine....i can reach the remote machine by ping and telnet…
  • IPSec to Azure

    Hello! We are an MSP with about 20 clients that have servers hosted in Azure. These 20 clients have various hardware models of Sophos XG and XGS firewalls with various steps of firmware from 19.5.3 to 20.0.22. Those firewalls have an IPSec site to site…
  • LLMNR disabled

    Hello, regarding to this post: LLMNR disabled - DNS resolution no longer works over VPN when will version 2.3 of sophos connect be published? kind regards
  • Enable SSL VPN and Internal Exposted Host

    Hi, I have an internal IP exposted to the public IP and this also works like it should. External traffic is translated to that host and you can access that host from the Internet. Now I wanted to add a SSL VPN Connection, made a firewall rule, a policy…
  • Access RED LAN network from local LAN (RED WAN TO RED LAN)

    I have a customer that uses SOPHOS FIREWALL and have connected a bunch of RED 15 and RED 20 devices. And for my customers end users they usualy connect to their RED device using SOPHOS CONNECTS . But mor and more often , they ask if it is possible for…
  • IPsec Remote Access VPN - Force specific traffic through VPN

    I reviewed this : Force specific websites through VPN tunnel? This works for SSL VPN. However adding a host IP under IPsec Remote Access does nothing. Also cannot add an FQDN host under IPsec Remote Access under v20. Is there any way to get this…
  • Can't access Admin GUI unless I SSH first

    I have two home deployments of Sophos Firewall v20, one at home and one at a family vacation home. I've set up VPN, routes, and rules between without issue. But the strangest issue that I can't seem to resolve is that with the vacation home the Admin…
  • IPSec Site-to-Site VPN Local Subnet Becomes Unreachable due to Inactivity

    Hello, I'm experiencing the exactly same problem as the guy in this (sadly locked) thread: IPSec Site-to-Site VPN Local Subnet Becomes Unreachable due to Inactivity As the thread ends with him contacting the support and no real solution, I was…
  • Sophos Connect (OpenVPN) Security Statement

    Sophos Connect still uses the very old OpenVPN version 2.5.6.0 and there have been some security annoucements since that version: https://community.openvpn.net/openvpn/wiki/SecurityAnnouncements e.g. the last CVE-2024-27459: Windows: fix a possible…
  • Connect: Multi-user Autoprovisioning

    Hi, as we can read in multiple threads, Sophos does not think multi-user devices are important. Sophos Connect with multiple users on the same PC - Discussions - Sophos Firewall - Sophos Community Sophos Connect client multi-user environment: usage…
  • Site-to-Site VPN Issues

    I am testing a new XGS 136 (SFOS 20.0.0 GA-Build222) offsite to replace an onsite XG 135 ( SFOS 19.0.2 MR-2-Build472). The backup of the XG 135 was used to setup the XGS 136. We have never used the IPsec Site-to-Site connection before but may have a…
  • L2TP freischaltung

    Hey Kollegen, ich habe ein kleines Thema und kann es aktuell nicht lösen und würde eure Hilfe hierfür benötigen. Ich betreibe einen Microsoft Server welcher mir einen L2TP mit PSK bereitstellt. Wenn ich jetzt nun die entsprechenden Ports an der…
  • GRE TUNNEL TUNNEL GETTING PRECEDENCE OVER OSPF

    Hello, I'm currently managing an XGS Sophos firewall at our headquarters, and we have a dual ISP setup connecting to branch offices. Our primary ISP uses **OSPF**, while the secondary ISP relies on a **GRE tunnel. The challenge arises when I add a…
  • Side to Side VPN zwischen Fritzbox und Sophos hinter einer Fritzbox

    Hallo zusammen, ich habe ein Problem beim Aufbau der Side to Side VPN Verbindung (IPsec) zwischen einer Fritzbox und meiner Sophos, welche hinter einer Fritzbox hängt. Der Aufbau sieht folgendermaßen aus: Beide Fritzboxen nutzen DDNS Dienste, da…
  • Status dead on ssl vpn service. Reason: half invalid SSP site2site client connection.

    Hello Sophos team, Last week we had an issue with out xgs4500 and the ssl vpn being "status dead", after restarting it, because i needed to change dns values (#07293112 ). We tried some KB article and forum posts, were it stated that we need to regenerate…
  • REMOTE ACCESS VPN

    Hello, good morning, my vpn connect is something strange, apparently when I connect it to my laptop and connect to another network the vpn grabs me, but the users who install the vpn connect, I enter their credentials, it looks like the image, they are…
  • Connecting to VPN ignores all local DNS setup

    I have some services running on a local server behind a reverse proxy and those services are protected from access outside IP subnets not specified in the reverse proxy settings. In my local router, I have the addresses for all these services listed…
  • VPN on Android, can access LAN by IP but not Name

    On my phone connected via OVPN I can access local network resources by IP but name resolution won't work. VPN: SSL VPN (remote access) I have Policy Members setup Use as default gateway is on Permitted network sources IPv4 is set to my local LAN VPN…
  • How to find out IP-Adresses of incoming ipsec vpns at sophos xgs firewall

    We have a sophos xgs with several ipsecn vpns site to site running. the Sophos XGS is responding to some VPNs that are without fixed public ipv4 adresses. One VPN incoming has no fixed static ip adress, but i need to enter that ip-adress at xgs to…
  • Sophos XG VPN mit Sophos Connect 2.2.90 Fehler DNS-Auflösung fehlgeschlagen ...

    Hallo zusammen, ich muss auf einem neuen Windows 10 Notebook VPN zu einer Sophos XG Firewall mit der Firmware "SFOS 19.5.3 MR-3-Build652" einrichten. Ich habe den Sophos Connect 2.2.90 Client aus dem Benutzerportal und die dazugehörige *.ovpn Datei des…
  • VPN SITE TO SITE

    HELLO GOOD AFTERNOON DO YOU KNOW WHY THE VPN CANNOT CONNECT AND I AM CHECKING THE RULE BUT THERE IS TRAFFIC AND THIS IS THE RULE
  • Passing IPsec networks through SSL VPN

    Dear, I have a site-to-site VPN between a Sophos XGS87 and a fortigate. I need SSL VPN users on my Sophos to have access to remote networks from this fortigate. Local networks on the Sophos XGS87 side: 10.40.85.0/24 10.50.85.0/24 Sophos SSL VPN…
  • Porblem xgs ipsec

    Hallo liebe communitytäter, Ich habe ene Frage zum IPSEC: Folgende Konfiguration: UTM direkt am Internet XGS hinter einer NAT normales DSL. Wenn auf der XGS die IP wechselt kein Problem die Verbindung bleibt bestehen. UTM Initiator XGS Responder…