• v21 Let's Encrypt Cert creation and renewal fails, whan NAT Rule for HTTP/HTTPS exists
    PCPCH
    On one of our XGS-firewalls, we need a NAT rule for HTTP/HTTPS. On this firewall, it's not possible to create or renewal a Let's Encrypt Cert. We need to disable the NAT rule, then it works to create...
  • Device Registration fails: Appliance connectivity issue with the license server - Time not set
    LHerzog
    I tried to register a RMA firewall with SFOS 21 EAP after it has been claimed in Central. It did not work. Either Administration -> "Registration" failed also Sophos Central -> "Sophos Central registration...
  • User member of multiple AD Groups - why not working for MFA / 2FA?
    LHerzog
    We have AD synced Groups. We use them for FW Rule permissions, SSL VPN access and MFA control on the Firewall. Now we have this scenario: User XY is member of these groups: Group A (used for a firewall...
  • AD Authentication Time-out
    Chris Burke2
    This issue just started on Sunday, reoccurred just now. Remote VPN login times-out. I've narrowed it down to an issue with the FW connecting to AD. The "Test Connection" failed. A reboot of the FW fixes...
  • IPS-Policy, Portscan/NMAP blocken
    Mike Ullrich1
    Hi Zusammen, ich hadere gerade damit, das IPS einer Sophos so einzurichten, dass sie einen Portscan blockiert, oder zumindest überhaupt mal erkennt. Meine Richtline hat einen Smartfilter "nmap...