Hey all, We're using ZTNA wherever we can, normally with Sophos firewalls. Works great. We have one situation where we're hosting servers for clients, so we need to use the VM gateway as only one tenant can use the firewall. We have had mixed results…

We have a /29 subnet from our ISP. I want to use a dedicated public address for our guest network traffic. I've added an alias on the PPPoE port and thought I could then just use an SD-WAN rule to route the traffic, but the alias doesn't appear in the…

ZTNA has stopped working ... possible after uploading new certificates. - open "fhem.ztna.mydomain.de" Authentication is triggered but afterwards i got a black screen - redirect to AZURE-Auth -- authenticating (i try different users) - redirected to …

Hi Configured one more WAN IP in the Sophos XGS136, link is up but traffic is not moving through new link, checked load balancing, everything is looking fine Pervious link is working fine, however the new link is not working, able to ping 8.8.8…

Hello. I`m using Sophos Firewall as a Gateway. Im trying to access a agentless resource using ZTNA, the configuration process was OK and the DNS configurations OK as well. When we try to access a resource that is on port 9001 we get a no healthy upstream…

I have a dual WAN setup, for this example, I'll call them A and B. A is my primary WAN, and B is my failover backup WAN. A uses starlink, and B uses a local ISP. I use another app to monitor pings to my ISPs to see if they are up. Unfortunetly…

I have two lines on firewall one is of internet line and one is of local line on which a specific website works. When we search that specific website that 2nd line should come into picture, but currently both the line are active but that website is not…

Has anyone been able to get ZTNA to iDRAC working? I have st all the ports and access method Agent. When I connect to the iDrac i get a web prompt Your connection isn't private Attackers might be trying to steal your information from idrac.xxx…

Hi, Does the firewall use only the first WAN connection for operations like upgrading the firmware, definitions, or load balances in case of multiple WAN interfaces? If it uses only the first wan interface, is it possible to change it? Thanks.

Hello Guys, I've tried to search, but without any luck. Basically I have a very simple configuration: LAN1 192.168.X.X --> WAN 1 Now I would like to modify the configuration, in this way: LAN1 192.168.X.X/24 --> WAN 1 LAN2 192.168.Y.Y/24 --> WAN…

I've got our firewall (XGS2100) connected to 2 Internet connections. One is a local wireless internet provider we've been using for years (as its a very good deal) and recently a Starlink connection to replace the woeful DSL and 4G connections. I had…

I tried the ZTNA eap which I was impressed with especially in conjunction with Sophos Firewall, But I wondered if Sophos firewall has the agent built in now, couldn't ZTNA be provided free of charge?? Just Im now priced out of the Central ZTNA and have…

Migrating our sites, and my brain, to sophos XGS from UTM In the UTM when I setup multiple WAN interfaces for uplink balancing, the object Uplink Interfaces was created. I could then use this object for things like the masquerade rules I do not…

Hello everyone, Today I am trying to deploy a network system running load balancing But I am currently stuck with a problem. That is, I cannot get the VLAN to use the correct internet line that I want. My idea: i want VLAN 50 and VLAN 70 to…

Are there any known issues with XGS and Starlink connections? We deployed a Starlink this weekend as a replacement for a traditional satellite service, but found that after a few minutes the connection stops passing traffic, with WAN link manager reporting…

Hello, I have some kind of problem with one of the WAN gateways on the Sophos XG Firewall. The Gateway status is always in red, indicating it is down: Before going more into detail, I want to present the network diagram to make things easier: …

I have just one internet service provider. From this ISP I have 3 blocks of public IP addresses, which means 3 different gateway addresses. On the XG firewall I ended up creating 3 WAN interfaces - one for each Public block of IPs where one IP from…

Hi Guys, I'm starting to learn Sophos XG and stumble upon this two images below. I would appreciate if someone help me visualize the said pictures since I'm having a hard time understanding it a (a high level diagram maybe?). Also I'm a little bit confuse…

There seem to be issues on the Sophos Coud Server mcs-push-server-eu-central-1.prod.hydra.sophos.com. Can sophos please confirm, the server is running as fast as it should and that this issue is not server side? Please do not simply point to the https…

Guten Morgen, ich weiß nicht wie ich anfangen soll, vielleicht klingt einiges verwirrend, aber vielleicht könnt ihr mir ja helfen. Wir haben bei uns in der Firma 2 XG210 im HA Verbund. Damals noch mit Version 17. Dort haben wir eine IPSec Verbindung…

Hi Everyone, Are any of you guys/gals having your XG report your external WAN as down or up over and over again ? I have called my ISP to verify everything on their end during the times I got the notifications. They said everything is good and I even…

Hi everyone! I have been on a hardware rollercoaster with this product. I recently purchased the XG 330 REV.2 last year. Everything was working fine, I made a few firewall rules and have a couple of VLAN's. but nothing too serious. I scoped out the…

I have setup a link aggregation in active-backup mode on two WAN interfaces of my XG firewall. When primary data connection fails the firewall still sees the gateway up and so it doesn't switch up the backup interface. Is there a way to change the default…

Hello, I have been experiencing a strange issue since July 8th: one of my 2 internet connections, a FO one, keeps going down frequently, but when I go into the admin page and try to run some diagnostics, say, ping 8.8.8.8 on that interface, then it…