Browse By Tags

  • Hair pinning rule in v16 issue

    Hello all, thank you in advance for your advices, I have some NAT web,ftp,mail Servers everyone with it's own public IP: Server 1 public IP1 -> NAT -> DMZ-Server-IPaddress1 Server 2 public IP2 -> NAT -> DMZ-Server-IPaddress2 Server 3 public…
  • Policy Test Tool in XG

    Hi all, I just fell foul of having to spend about 5-10 minutes tracking a user through a set of policies to work out what policy their browsing was being caught on and really remember the value of the policy test tool in the UTM for Web Protection.…
  • SFOS 16.01.0 - port 25 not forwarded

    After reloading our XG115 with the new SFOS 16 firmware, we are not able to receive any emails any longer! External email servers could not reach our server. After investigating the problem today, we reverted back to SFOS 15. We are using a business…
  • RE: Disable Webfiltering on Sophos Cloud Endpoints?

    HI x.cr3w, On Sophos Central , All you would need to do is disable the policy applied on the user/computers and in the base policy (which cannot be disabled). You would need to go to Base policy and edit by disabling the Web control and if you have…
  • Feature Request: Policy for Randomized Scheduled Scans for Endpoints and Servers

    I would like to see a randomized scheduled scanning option for servers and endpoints in the policy. For instance, "scan once a week or once a month between these hours on these days". I want to scan my servers and endpoints, but I don't want them all…
  • Web traffic based on URL not working also users not getting populated in XG-135

    Hi, Created URL categories list (consisting of domains permitted by our firm) and used it in a custom web filter. Created a network/user policy --here applied the custom web filter (consisting of permitted URL categories). Added user groups imported…
  • HTTP and majority of HTTPS returns 502 error or will not connect

    Hi there, Twice in three days I've had a network issue caused by Sophos XG210 and I would like some feedback on how to prevent it re-occurring or, at the very least, how to solve it in the future. In both cases, connections to HTTP do not work, giving…
  • VLAN N/A not connected Help

    Cisco small business L3 switch Sophos XG fresh new install with default setup rules Do anyone have vlan working on XG that can show me how they have it setup and what settings i might have to change on the xg to get it working. I am unable to get vlan…
  • Route Web Traffic based on URL Domain

    Hello Hey guys, new to the XG Firewall and I wanted to know if its possible to direct traffic from the LAN zone to the WAN zone based on URL/domain? For example, we have 2 WANs setup (Coax via TWC and Fiber via ATT). The general web traffic policy…
  • SIP server on DMZ - how to set up working rules

    Hi. I think I need assistance to understand fully the way how firewall and routing/forwarding is working in XG. I have a question related to SIP server in DMZ. So - to describe: I have 3 ports: 1: WAN(bridge - public IP), 2: LAN (192.168.2.x)…
  • How to backup the database of policy editor - sge 7.02

    How can i create a backup of our database ? We use sge release 7.02 and in the option dialog there ist no tab for Backup the database Any ideas ? We have to move to another computer
  • alll traffic passing from the default policy and not from the policies i created

    Hi guys i deployed sophos XG firewall and I created policies that matches the vlans in my network, knowing I gave port1 a static IP, and configured the Vlans as used in my network, the next step is to add polices, when adding new firewall policies and…
  • RE: Web Filter URL group does not accept RegEx?

    Thanks for the reply, but it won't work in this situation. Domain blocking will not work because what exactly is the craigslist domain ? Is it craigslist.com, craigslist.it, craigslist.co.uk, craigslist.org or even craigslist.fr ? You get the picture…
  • Multiple WAN ports?

    Forgive me, still a newbie with the Sophos XG's. I am accustomed to Fortinet, sonicwall, and watchguard appliances, so this question may be a real noob one. I have a sophos XG85 I set up, using a TDS connection for the WAN. I am migrating this site…
  • Policy users - no users to apply?

    I have created a base policy, then I assigned group but no user. Sophos Central is showing that "This policy does not apply to any user". The policy is not working for the user that is in policy assigned group. Not until I add user in that policy…
  • WeTransfer and Sophos Cloud not working

    I'm currently researching some complaints from users on a Windows 2012 R2 Remote Desktop Server with Sophos Cloud Server Standard deployed. They are unable to upload files to WeTransfer while the policy are at default settings. Uploads hang at 0% or go…
  • QoS traffic limiting for AV update server

    Hello, We have recently deployed the XG appliance and had a ask about limiting the download bandwidth to our AV update server. I have created a host entry for it, and then a rule based traffic shaping policy: Policy Application - Rule Rule Type…
  • priority is zone or network?

    Hi sophos team, I just want to confirm that if i create a rule is zone LAN to zone DMZ and network is (GF)10.10.0.0 to (SERVER)192.168.1.1/32 is that same with zone ANY to zone ANY and network is (GF)10.10.0.0 to (SERVER)192.168.1.1/32? the priority…
  • Business Application Rule didn´t work with WAN IP Alias

    Hi sophos community, a new day a new problem with my new xg 210 firewall with the latest mr2 firmware. I configured the wan interface with ip alias: I created the new business application rules with the non-http based policy template: …
  • Short Firewall Timeouts

    Hello Forum! i very like the sophos xg firewall im running it on a virtual hyper-v machine on my home domain-network. Everything works fine but one thing. I'am a Gamer and i play World of Warcraft (even though warlords of draenor sucks...) the problem…
  • Can Sophos Safeguard Policy encrypt CD/DVD burning via Windows Media Player

    Can Sophos Safeguard Policy encrypt CD/DVD burning via Windows Media Player - we have a policy in place to encrypt CD/DVD/USB etc however it seems you can circumvent it (for media) by using Windows Media Player (not tested any 3rd party burners yet).…
  • User Policy or Server Policy for users connecting to RDP server?

    Question: When a user logs into a terminal server, is the User policy priority or the assign Server policy to the server? Situation: We have a terminal server with a variety of users who log into it. Some need a more restricted policy applied than…
  • Stacking Rules to achieve a goal? Need a little input.

    I have two groups of users, lets call them "common" and "power". I want "common" to have access to "Health and Medicine" , the "power" group to have access to "business appropriate" sites, I want a physical machine to have "unlimited access. To this end…
  • Policy Compliance issue

    Within SEC, "Policy Compliance" is blank on some computers. Why is this? I have set up all the PC the same and almost all of them have worked without issue and state "Same as policy". I also notice that all the options under "Comply with" menu are greyed…
  • RE: Create POA exception.

    Appears to be by design there is no way to exempt a user or group unless they are in a different OU so you can apply a different policy group. You also need to be careful with sub OU's even though you can enable inheritance blocking items applied at the…