Hi all, we would like to monitor the currently connected number of ssl vpn users with PRTG. Unfortunately there seems to be no snmp oid for this - see SNMP - Number of VPN Users? Any other ways to access this value? Sophos API, SSH? Any plans to create…

I appreciate the fact that Firewall Rules can be grouped, as this makes for more flexibility in the sorting and managing of rules versus not. However... the default option for firewall rules is "Automatic" which if you forget to change, jams it into the…

I would like to see an easy way to move vlans to another port. This will help in moving a heavily used port from one port to another without having to delete the vlan and DHCP scope and recreate it. This would speed up moving vlans across ports. …

XG550 (SFOS 19.0.2 MR-2-Build472) This is specially directed to Sophos: Hello SOPHOS, i tried to import a Sophos XG created TOTP into Sophos UTM which is handling reverse proxy functionality with reverse auth including totp (because sophos xg is not…

Hello everyone, I've configured one of our Sophos devices with some rules and policies . The problem is with the amount of Logs it generates per second! There are too many Information level logs about WAF and other types of log components. So it…

looking for suggestions for a tool(s) that we can use to perform a security review on the XG330 thank you

If you are having trouble with one of your WAN links, disabling it for troubleshooting would be very useful. Why is this not possible? I've been on calls with SOPHOS Engineers where we needed to do this, and it they were frustrated not being able to.

Access point offline alerts don't give you the name of which access point is offline. Just the serial number. Then you need to log into the Firewall just to see which AP went offline. UTM showed you the name of the access point that went offline. Having…

When you are setting up a pair of firewalls in an HA setup, under SFOS, you have to fully set up both firewalls to link them, which immediately wipes the second firewall and syncs it to the first. Very tedious. On the UTM devices, you'd set up the first…

For weekly config backup on the firewalls, it lists the model and serial number instead of the hostname of the firewall. Makes it more tedious to determine that our weekly backups are being delivered. UTM didn't have an issue with this. SOPHOS has certainly…

We have multiple techs in our organization and I don't share the default ADMIN account with them. I have set them up with their own accounts. However, if they are ever troubleshooting the firewall with a SOPHOS Engineer, almost immediately the engineer…

From time to time, disabling an interface would be very useful in troubleshooting an issue. Why is there no ability to disable an interface. I've had calls with SOPHOS Engineers who also wished this would be possible for troubleshooting. Engineers at…

Why does the DHCP Server not show how many leases are used up in a DHCP Pool. There is also no notification if your DHCP Pool is exhausted either. Would be very useful to know if you were getting close to running out. As far as I can see, there is no…

When you look at your DHCP Lease... why is there no option to: a) show more than 20 lines on the page b) export to excel Instead it shows you the leases one page at a time. Not very convenient.

Why can't you view your site-to-site settings when you have a failover group active. Whenever I'm working with a SOPHOS engineer on an issue, the first thing they want to do is view the VPN settings, but they can't without taking the VPN tunnel offline…

In some places in the interface...(see below) SOPHOS lists in KBits, which should be Kbits, since KB = Kilobyte, Kb = Kilobit. In other places(see below) it says MB and KB. I don't know if these are actually Kilobits and Megabits and SOPHOS is just…

The log viewer of Sophos Firewall always opens in a full screen window. I have a 49’’ super ultrawide monitor, so opening the window maximized doesn’t make any sense and I have to resize it every time. Please make it an option to remember the last position…

I would also like to see it shown in the GUI the current usage live so we can see that without having to go into the CLI I would like to see a report of each port's, utilization for all physical ports and vlans on those ports. for example, the max this…

Hi Sophos community, Is there a way to see device reports by device name? In other Firewalls I had this option but it doesn't seem to be an available feature thru Sophos.

i would like to allow ip addresses from a company such as cloudflare. however, their ip addresses will be changing. i would like to allow their ASN number so that i don't need to keep track of their ip addresses changes. is this possible?

Is it possible to filter more than one port in the log viewer? I am trying to find some specific traffic and i want to exclude both 443 and 123 but I cant seem to stack the filters. Thanks!

I'm running Sophos XG in a VM on my QNAP. When there is a power failure, my QNAP suspends my VMs and shuts down. Upon reboot, it resumes all the VMS and uses virtio-serial to sync time. Since Sophos XG doesn't have support, the time is off, which doesn…

hi all, we encountered some limitation with sophos fw, under SFOS 19.5 with IPSEC configuration. There is no possibility to set null encryption under ipsec phase 2 part. Is there a way to bypass this limitation ?

Hi, is it somehow possible to convert FirewallRule XML export from XG or XGS to some readable form for example to Excel with all needed items like list of all used source, destination networks etc. We need to convert XML to some sort of table form for…

I've never seen a time format like this leaving zero (0) out for minutes: Probably one thing for a little improvement.