Hi,
aus einem nicht ganz klaren Grund führen DNS Request zu Intrusion Prevention Alerts.
Immer der Art
[CRIT-850] Intrusion Prevention Alert
Intrusion Prevention Alert
An intrusion has been detected. The packet has *not* been dropped.
…
Hello together,
I would like to use the UTM home as a DHCP and DNS server. I have already configured DHCP. I use home.local as the domain entry in the DHCP settings. This is also correctly displayed as suffix in the Windows Ipconfig settings after a…
Hello together,
I would like to use the UTM home as a DHCP and DNS server. I have already configured DHCP. I use home.local as the domain entry in the DHCP settings. This is also correctly displayed as suffix in the Windows Ipconfig settings after a…
Hello together,
I would like to use the UTM home as a DHCP and DNS server. I have already configured DHCP. I use home.local as the domain entry in the DHCP settings. This is also correctly displayed as suffix in the Windows Ipconfig settings after a…
Hi,
noticed this behavior: - XG configured for 3 DNS servers - on upstream device only those 3 DNS servers are allowed for XG - occasionally XG sends DNS request to many other DNS servers and these are denied by upstream device - issue on 18.5.1 and…
Couldn't delete the post, so am editing it. I figured out how to add the XGS as the DNS server: in DHCP, uncheck the box to use the DNS settings and set the interface IP as the DNS server.
Hi,
the SOPHOS UTM Firewall of one of our Clients sporadically reports an ATP-Threat (Botnet/command-and-control traffic) that has been blocked. The "infected" Hosts are always the two Domain Controllers / DNS Servers within the network.
User…
Is it possible to setup 2 groups for SSL VPN where each group has its own DNS settings? I have 2 AD domains on my LAN and want to have clients for AD1 get the AD1 DNS servers and the AD2 clients get AD2 DNS servers.
Thanks.
System Configuration: 2x XG125s in an HA Pair running SFOS 17.5.15 MR-15. We have two ISP connections feeding separate unmanaged switches which feed Two WAN ports on both units. (ISP->UNMANAGED SWITCH->WAN Port). This enables failover for ISP Failure…
[EDIT] I misunderstood how DNS queries to addresses like 8.8.8.8 are routed. They do go through the VPN tunnel.
My question -- which I can't seem to delete, so I am rewriting -- had to do with wanting to make the XGS be my DNS server, through an SSL…
Hi All,
I'm currently testing migrating from the SSL VPN client to using The Connect Client with ipsec. I've set everything up and can connect without issue. I'm also able to resolve devices within the lan, ping them, access resources but no matter…
Hello Everyone
I have installed fresh firewall of Home Edition on Individual PC internet browsing working fine, but am unable to ping any host name from sophos like gmail/yahoo or any domain, while Ping to IP address is accessible. I have also created…
Hi Guys,
Apologies if this is a NooB question...
I've been happily using UTM for a while now at home with it acting as DNS server for my LAN and then sending anything necessary off to Cloudflare for forwarding, no problems at all.
Yesterday I deployed…
Hallo,
ich habe den DNS Guide durchgelesen, es gelingt mir allerdings nicht das meine SSL VPN Einwahlgeräte den internen DNS Server (W2019 AD Controller) als DNS Server verwenden.
Diesen bräuchte ich um die Internen Dienste die via Split DNS angesprochen…
Hello all,
I have 2 locations (HO & BO) each behind their own XG Firewall. I have created a Site to Site VPN and everything works via IP but not by DNS.
The Setup is as follows:
All servers are hosted in the HO. There are no servers in the BO. S…
Hallo zusammen,
ich habe mir vor erstellen ein paar Threads hier durchgelesen, aber irgendwo ist der Wurm drin...
ich möchte per SSL VPN eine Adresse auflösen.
Die Adresse habe ich als Objekt auf der Firewall angelegt --> Bsp. test.web.de
…
hi. i have XG210 (SFOS 17.5.14 MR-14-1). it is also acting as DHCP server and giving ip to clients.in DHCP i configured DNS server of my local server i.e, domain controller. today i start having issue the i m not able to access the server placed in my…
Hi,
I have two WANs connected on my Sophos XG SFOS 18.5.1. The DNS is configured with " Obtain DNS from PPPoE".
My Problem now is, that my PhoneSystem is using DNS from the Sophos.
But it may only use the DNS from WAN2 and not from WAN1.
How…
Hi,
i configured some clients in the network to start using the XG as dns server on saturday mid-day.
After this you can see the memory usage ramping up, is possible that there is a memory leak?
Fw is on SFVH (SFOS 18.5.1 MR-1-Build326)
We have a public wildcard DNS record configured (*.domain.com) so if someone puts in asdf.domain.com, it will still go to our main website www.domain.com.
On the Sophos firewall, I have set up many DNS host entries in Network --> DNS, with the idea…
HI,
Since myfirewall.co stops working, I would appreciate if you can add the ability to add a custom option. If you cannot add that option, I would appreciate if you can add the entry for my provider joker.com/.../what-is-dynamic-dns-dyndns.html Th…
Hello,
We just set up IPsec client VPN.
The DHCP pool is 10.81.234.5-10.81.234.55.
"Use as default gateway" is unchecked.
Originally, we had 8.8.8.8 in the DNS Server 1 field. Secondary DNS field left blank.
When we'd connect to the VPN, internet…
I am running the latest XG release and am finding that sometimes DNS resolution is stopping. The Firewall is responsible for DNS requests. The problem tends to go away on its own by just waiting or I can force it by restarting the DNS service. Any suggestions…
Hi,
I'd just like to document how we did it:
Sophos UTM SG 230 running latest firmware:
SSL VPN configured, multiple connections allowed, compression disabled
Each device got a new local user account on the UTM with their machine name, e.g…
I found a few similar questions from different people over the years as to why their XG makes constant DNS lookups to huge amounts of domains with none of the posts having a useful answer. Unfortunately all those threads were locked due to age so I've…