Browse By Tags

Hi everyone! We are using a Sophos XGS2300 (SFOS 19.0.1 MR-1). We uploaded a pfx-certificate to the WAF which specifically included only the webserver certificate itself and its intermediate certificate. But, when we check the site with a tool like…

Good Monring, I've an XGS v19.0.1 and want to set an Application Filter (AC) on top of existing Firewall rules. But i'm not sure if i'm understanding how this mechanism is working. My fw-rule is from "serveral internal zones" with "several defined…

Hello, I am running with Sophos XG210 (SFOS 19.0.1 MR-1-Build365) . There is Request Entity Too Large error is still existing when I download file larger than 1 MB from WAF protected website. Here's the error message. ========================…

Hey there, We've got a weird issue with one application failing because it looks like the XG isn't forwarding the TLS packets appropriately on one link. A: XG135 (SFOS 19.0.1 MR-1-Build365) 10.109.10.250 B: XG330 (SFOS 19.0.1 MR-1-Build365…

I try to compare the admin password from config taken in 18.5.4 and the one that has been taken after the upgrade to 19.0.1. I have decrypted the backup file with openssl and now I'd like to find the password string - either encrypted or decrypted.…

is there something about known issues with the default admin after upgrading? Webadmin and SSH logins are no longer working after we upgraded from 18.5.4 to 19.0.1. On several locations this issue has not been seen but on our XG430 we cannot login afterwards…

Good morning community, I have a problem with WAF after a migration from XG230 to XGS2300. It was a XG230 HA cluster which I disbanded before the backup and only backed up one firewall. I imported this backup into a new XGS2300 and again formed a…

Hello, i am reciving many Notifications like Message: BROWSER-IE Microsoft Internet Explorer XSS filter bypass attempt Mostly i look up it has something to do with some kind of advertisement api from google or other cloud services…

Hi there, Sophos XG230 and v19.01. We have here permanently 30% CPU from garner process. Looking closer with "tail" you can see the following. usercache_output: resolve_gr_cache for FW_PBR_MODULE failed usercache_output: resolve_gr_cache for FW_PBR_MODULE…

Hi, We have an established L2TP VPN tunnel that has been working for years. Local authentication on the firewall. The firewall is XG ver 19.01 MR-1 Build 365, and a copule of days ago the VPN just stopped working. Around the same time we imported…

on SFOS 18.5.4 and 19.0.1 we still notice that Admin Audit logs in Logviewer are not showing all changes admins make on the system. Example: anything you do with IPS policies is not logged. Adding, changing, deleting other example: IPSec Site…

Hi, I recently upgraded to SFOS 17 to 19.0.1 MR-1 and I used to have access to the user's QR codes as admin. This was handy with remote users when they got new phones or lost their phone I could easily add the OTP token back to their new phone. I understand…

Hello, in our company we got about 60-80 users. Each department got his own vlan running over one port. XGS2100 (SFOS 19.0.1 MR-1-Build365) Over the year i was setting up the sopho xg and adding all Firewall rules, like all department are in one…

I recently moved the customer from Sonicwall to Sophos. The customer being a bank has a P2P connection with their ATM service provider. There are multiple resources on this P2P service and most have an IP binding configured. For most of them they have…

Hello there, like the title describes, I'm currently facing or investing the problem of the sudden loss of all IPSEC VPN connection to our back offices and also both connection to our cloud provider. We made no changes before the incident and…

Hi All, We are Non profit who do charity work. We cannot afford to by new equipment's so got XG 125 donated but without license, We swapped the HDD and managed to get the XG home Edition installed. The SW image we used were SW-19.0.1_MR-1-365. The issue…

Every time FQDN hosts object is being added to firewall it causes dnscache to restart. During restart name resolution using firewall fails. New FQDN host object being added to firewall, notice how PID changes for dnscache process. Instead of reloading…

I have a site to site IPSec VPN between two Sophos XG both located in LA. HQ Site: SG230 (SFOS 17.5.16 MR-16-Build830) BrachOffice: XG125 (SFOS 19.0.1 MR-1-Build365) Problem: A particular site is not accessible from branch office but that is accessible…

XGS6500 (SFOS 19.0.1 MR-1-Build350) I have incoming and outgoing rules to block traffic from certain countries, both are the same (with source and destination swapped). Incoming block works, outgoing doesn't seem to trigger. I get the same result from…

Has anyone done that yet? We are currently trying to setup a Sophos XG 19.0.1 kvm version in OpenStack. Installation runs seemlessly. But when trying to get network traffic from LAN to WAN nothing happens. It seems as if the traffic is not getting back…

Hello Community, for info: if there is no user on a firewall for an API call, the WebAdmin breaks down and is unreachable for about 10 minutes. The API responds with this message: <?xml version="1.0" encoding="UTF-8"?> <Response APIVersion="1900.1…

Android and iPhone devices are staying connected to the wireless network but they quickly lose internet connection if they get it at all. Workstations, laptops etc. do not have this issue. Constant ping to 8.8.8.8 from affected devices will drop packets…

Is there any update on bug NC-87666? I don't see it listed in the Sophos bug list, under the "Sophos Firewall" section, located here: https://docs.sophos.com/support/kil/index.html Here's a link to the old forum post on the matter: https://community…

I often receive the following error when trying to update a failover rule for one of my gateways: "Gateway failover rule could not be updated" I can't find any consistency in how to re-create this. I'm not sure if the problem also existed in v18.x…

Hi, Is there an easy way to delete all spam mail in SMTP Quarantine. I've got a customer with 189 pages of spam email I want to clean. I don't have the time deleting them per page. Customer is on an HA 210 v19.0.1 MR1. Any help would be very…