• DNS Request führen immer zu Intrusion Prevention Alert

    MarcK
    MarcK
    Hi, aus einem nicht ganz klaren Grund führen DNS Request zu Intrusion Prevention Alerts. Immer der Art [CRIT-850] Intrusion Prevention Alert Intrusion Prevention Alert An intrusion has been detected. The packet has *not* been dropped. …
    • over 2 years ago
    • UTM Firewall
    • German Forum
  • DNS Server Hostet by Sophos UTM

    BastiiDDD
    BastiiDDD
    Hello together, I would like to use the UTM home as a DHCP and DNS server. I have already configured DHCP. I use home.local as the domain entry in the DHCP settings. This is also correctly displayed as suffix in the Windows Ipconfig settings after a…
    • over 2 years ago
    • UTM Firewall
    • Management, Networking, Logging and Reporting
  • DNS Server with Sophos UTM homeuse

    BastiiDDD
    BastiiDDD
    Hello together, I would like to use the UTM home as a DHCP and DNS server. I have already configured DHCP. I use home.local as the domain entry in the DHCP settings. This is also correctly displayed as suffix in the Windows Ipconfig settings after a…
    • Answered
    • over 2 years ago
    • UTM Firewall
    • General Discussion
  • DNS with Sophos Home

    BastiiDDD
    BastiiDDD
    Hello together, I would like to use the UTM home as a DHCP and DNS server. I have already configured DHCP. I use home.local as the domain entry in the DHCP settings. This is also correctly displayed as suffix in the Windows Ipconfig settings after a…
    • over 2 years ago
    • UTM Firewall
    • General Discussion
  • Why XG asks not configured DNS servers?

    Tomas Beran
    Tomas Beran
    Hi, noticed this behavior: - XG configured for 3 DNS servers - on upstream device only those 3 DNS servers are allowed for XG - occasionally XG sends DNS request to many other DNS servers and these are denied by upstream device - issue on 18.5.1 and…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XGS as DNS server: Figured it out

    Wayne Folta
    Wayne Folta
    Couldn't delete the post, so am editing it. I figured out how to add the XGS as the DNS server: in DHCP, uncheck the box to use the DNS settings and set the interface IP as the DNS server.
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • ATP Alarm C2/Generic-A Blocked DNS Requests (Forwarded from SOPHOS)

    uhrzeit
    uhrzeit
    Hi, the SOPHOS UTM Firewall of one of our Clients sporadically reports an ATP-Threat (Botnet/command-and-control traffic) that has been blocked. The "infected" Hosts are always the two Domain Controllers / DNS Servers within the network. User…
    • over 2 years ago
    • UTM Firewall
    • Management, Networking, Logging and Reporting
  • SSL VPN client groups with different DNS server settings

    Andrew Smith8
    Andrew Smith8
    Is it possible to setup 2 groups for SSL VPN where each group has its own DNS settings? I have 2 AD domains on my LAN and want to have clients for AD1 get the AD1 DNS servers and the AD2 clients get AD2 DNS servers. Thanks.
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG v17.5 - SSL VPN Single Client Network Route Trouble

    Daniel Berman - Meier Architecture • Engineering
    Daniel Berman - Meier Architecture • Engineering
    System Configuration: 2x XG125s in an HA Pair running SFOS 17.5.15 MR-15. We have two ISP connections feeding separate unmanaged switches which feed Two WAN ports on both units. (ISP->UNMANAGED SWITCH->WAN Port). This enables failover for ISP Failure…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • DNS lookup to the XGS through a SSL VPN tunnel

    Wayne Folta
    Wayne Folta
    [EDIT] I misunderstood how DNS queries to addresses like 8.8.8.8 are routed. They do go through the VPN tunnel. My question -- which I can't seem to delete, so I am rewriting -- had to do with wanting to make the XGS be my DNS server, through an SSL…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Can't Ping/reach Client Connect ipsec Client

    Tungmeister
    Tungmeister
    Hi All, I'm currently testing migrating from the SSL VPN client to using The Connect Client with ipsec. I've set everything up and can connect without issue. I'm also able to resolve devices within the lan, ping them, access resources but no matter…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Unable to ping from sophos to gmail/yahoo

    Muhammad Naveed
    Muhammad Naveed
    Hello Everyone I have installed fresh firewall of Home Edition on Individual PC internet browsing working fine, but am unable to ping any host name from sophos like gmail/yahoo or any domain, while Ping to IP address is accessible. I have also created…
    • over 3 years ago
    • UTM Firewall
    • General Discussion
  • What does UTM do for DNS - Should I keep it included?

    Sophos User1817
    Sophos User1817
    Hi Guys, Apologies if this is a NooB question... I've been happily using UTM for a while now at home with it acting as DNS server for my LAN and then sending anything necessary off to Cloudflare for forwarding, no problems at all. Yesterday I deployed…
    • over 3 years ago
    • UTM Firewall
    • Management, Networking, Logging and Reporting
  • Interner DNS Server für SSLVPN / SITE to Site VPN

    Antau
    Antau
    Hallo, ich habe den DNS Guide durchgelesen, es gelingt mir allerdings nicht das meine SSL VPN Einwahlgeräte den internen DNS Server (W2019 AD Controller) als DNS Server verwenden. Diesen bräuchte ich um die Internen Dienste die via Split DNS angesprochen…
    • Answered
    • over 3 years ago
    • UTM Firewall
    • German Forum
  • Site-to-Site DNS

    Paul Simcox
    Paul Simcox
    Hello all, I have 2 locations (HO & BO) each behind their own XG Firewall. I have created a Site to Site VPN and everything works via IP but not by DNS. The Setup is as follows: All servers are hosted in the HO. There are no servers in the BO. S…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • DNS Auflösung per VPN SSL

    Stephan Evers1
    Stephan Evers1
    Hallo zusammen, ich habe mir vor erstellen ein paar Threads hier durchgelesen, aber irgendwo ist der Wurm drin... ich möchte per SSL VPN eine Adresse auflösen. Die Adresse habe ich als Objekt auf der Firewall angelegt --> Bsp. test.web.de …
    • Answered
    • over 3 years ago
    • UTM Firewall
    • German Forum
  • facing issue while accessing server using DHCP provided DNS of firewall

    Ahmad
    Ahmad
    hi. i have XG210 (SFOS 17.5.14 MR-14-1). it is also acting as DHCP server and giving ip to clients.in DHCP i configured DNS server of my local server i.e, domain controller. today i start having issue the i m not able to access the server placed in my…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • 2 DNS, but only use 1 for phonesystem

    TVV
    TVV
    Hi, I have two WANs connected on my Sophos XG SFOS 18.5.1. The DNS is configured with " Obtain DNS from PPPoE". My Problem now is, that my PhoneSystem is using DNS from the Sophos. But it may only use the DNS from WAN2 and not from WAN1. How…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • High Memory Usage on XG Virtual - possibly related with dns server

    Halino
    Halino
    Hi, i configured some clients in the network to start using the XG as dns server on saturday mid-day. After this you can see the memory usage ramping up, is possible that there is a memory leak? Fw is on SFVH (SFOS 18.5.1 MR-1-Build326)
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Sophos DNS host entry fail

    djb-sophos
    djb-sophos
    We have a public wildcard DNS record configured (*.domain.com) so if someone puts in asdf.domain.com, it will still go to our main website www.domain.com. On the Sophos firewall, I have set up many DNS host entries in Network --> DNS, with the idea…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Request: Dynamic DNS Custom

    Fermin
    Fermin
    HI, Since myfirewall.co stops working, I would appreciate if you can add the ability to add a custom option. If you cannot add that option, I would appreciate if you can add the entry for my provider joker.com/.../what-is-dynamic-dns-dyndns.html Th…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • IPsec VPN client DNS server 8.8.8.8 - SLOW INTERNET

    djb-sophos
    djb-sophos
    Hello, We just set up IPsec client VPN. The DHCP pool is 10.81.234.5-10.81.234.55. "Use as default gateway" is unchecked. Originally, we had 8.8.8.8 in the DNS Server 1 field. Secondary DNS field left blank. When we'd connect to the VPN, internet…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • DNS Troubleshooting

    Super CM
    Super CM
    I am running the latest XG release and am finding that sometimes DNS resolution is stopping. The Firewall is responsible for DNS requests. The problem tends to go away on its own by just waiting or I can force it by restarting the DNS service. Any suggestions…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • [Howto] Sophos SSL VPN: Always on device tunnel, group policy software install applies correctly on boot

    Thomas Reiser
    Thomas Reiser
    Hi, I'd just like to document how we did it: Sophos UTM SG 230 running latest firmware: SSL VPN configured, multiple connections allowed, compression disabled Each device got a new local user account on the UTM with their machine name, e.g…
    • over 3 years ago
    • UTM Firewall
    • Recommended Reads
  • Constant DNS lookups to google domains and others in FQDN hosts - FIX

    splarksop
    splarksop
    I found a few similar questions from different people over the years as to why their XG makes constant DNS lookups to huge amounts of domains with none of the posts having a useful answer. Unfortunately all those threads were locked due to age so I've…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
<>