Hi, we're experiencing a problem with Ipsec Vpn (site2site) from Sophos to Cisco. In the Ipsec tunnel we have two subnet (subnet1 e subnet2) at sophos vpn side and one subnet (subnet3) in the remote site managed by cisco. It seems that only on subnet…

Hallo zusammen, uns plagen etwaige Probleme seit wir von unserer guten alten Sophos ASG auf Sophos XGS umgeschwenkt sind. wir haben IP-Sec VPN Tunnel kreuz und quer durch ganz Deutschland, IKEv2, Verbindung ist da und es läuft Datentraffic darüber. Probleme…

I recently add a new firewall for the branch office , so we have 2 firewalls one for the main office and one for the branch office, branch office can ping our ip's, but we from Main branch we can not ping any of their ip's, not even 1, it's really strange…

I have multiple Sophos site to site VPN's back to a central router. Whenever any of the sites losing connection they all re-connect except for 1. The Sophos VPN logs show "Couldn't authenticate the local gateway. Check the authentication settings on both…

Is there a way to check if the ISP router doesn't supports IKE2 causing IKE2 IPSEC tunnel to fail. A troubleshoot method or guide ? This is to proof to Service Providers that the problem lies in their end and not firewall.

Hello all, I currently have a XG firewall (FW-1), connected through IPSEC tunnel with another (FW-2). FW-1 has two LAN zones (LAN-A and LAN-B), both allowed through the IPSEC tunnel. FW-1 sends log messages (originated from the firewall itself…

Hi everyone, We have an IPsec site-to-site VPN connection between our Sophos and Fortigate devices. Currently, both the gateway and tunnel are UP and functioning properly. VLAN 10 and VLAN 20 are included in the local subnet configuration on the Sophos…

Very nice! I need help setting up an IPsec tunnel between sites, the firewall models are "UTM - SG135, Firmware 9.719-3" and "XGS2100 - Firmware (SFOS 20.0.0 GA-Build222)". We have researched through forums and followed some steps that match the errors…

implementing vpn site to site connection, causes problems with ip telephony, when starting the connection or disabling the connection causes my voip phones to start disconnecting from the pbx. once the connection is established and having the vpn connected…

Hi all, I have an xgs 3100 firewall on which about 20 ipsec tunnels are attested. All these ipsec have fragmentation problems so I am forced to use mss-clamping. For example without mss-clamping an icmp packet passes as long as I set a size of 1400…

[POST DE DEBATE SOBRE O ASSUNTO] Opa pessoal! Em minha infraestrutura eu tenho o escritório na matriz (XGS 3100) conectado a outros quatro escritórios filiais (XGS 136) por Tunel RED, utilizando a configuração RED Server no escritório matriz e RED Client…

We are wanting to connect our remote office, which is in a managed/shared office space building, to our head office. We have no control over the shared office netowrk. We have a XGS in the managed office space. The internet connection is supplied…

Hi, after updating to 20.0.2 the Site to Site VPN connection between our XGS (Host) and the Fritzbox is not working anymore. Before the Update is was workking without any problems. A downgrade to 20.0.0 is also impossible as the XGS always tells Firmware…

Hi, We need to establish a multiple site to site IPSEC VPN with a XG86w as the HQ. Both remote sites have a TELTONIKA RUT240 router. I am able to ping from HQ both remote sites, and from each remote site the HQ, but can’t ping a remote site from…

I Need help regarding my ipsec. I have two sites HQ and remote site. The firewall is connected through ipsec. I have set both inbound and outboud rules. But am still not able to ping each end of the firewall or to remotely access resources at HQ. Kindly…

My server is Sophos Firewall XG125 (SFOS 17.5.16 MR-16-Build830). Sophos connect works perfectly but the .ovpn file downloaded(via user interface) will not connect. I also used the details from the .tgb to build a config file for strongswan, but didn…

Dear Sophos Support, I hope this message finds you well. We are experiencing an issue with our Site-to-Site VPN setup. While the VPN tunnel appears to be up and stable, we are unable to access the servers that are sitting behind the Azure gateway…

Moin, Ich will zwei Standorte verbinden. Auf der einen Seite ist ein Subnetz die sich über eine PFSense auf die andere Seite über eine Sophos XG mit zwei Subnetzen verbinden soll. Phase 1 ist kein Problem, aber es wird nur ein Subnetz verbunden. Wenn…

Hi, I have configured the tunnel from DC to another location, The tunnel couldn't established. I don't know what is the reason the tunnel has down. I have debug the issue still unable to find out the issue, please assist me to resolve the issue

Hello, Recently one of our clients contacted us about purchasing some new Sophos firewalls. They had some VPN settings on their old Meraki firewalls. We have the VPN settings now, but it seems like most of these settings don't even exist in the Sophos…

Hi All - ive had this issue for over 2-3 years now - when trying to make changes on site to site vpns - either the changes take long to apply, dont apply or need to apply several times. i try to change local ID for example on an existing site to site…

Hi, I have a bunch of XGS firewalls in main offices of my customers, which have branch/remote offices with Draytek routers, different models. I have not paid attention till now, when one of those reported intermittent issues with Site2Site IPSec VPN…

Hello, I have a problem with an ipsec Site to Site tunnel. The tunnel is being built, but no traffic is going through the tunnel. The remote station is connected to a router via LTE and a Dyn DNS entry. I checked local and remote subnets. The firewall…

Hi I need to translate packets between an ISec and a RED 20. There is an IPSec tunnel with 172.18.10.0/24 on the remote site and 172.26.143.1/24 on the Sophos. I have a RED device with 192.168.54.1/24. I would access form REDs subnets hosts (maybe…

Greetings fellow members, I have 2 networks with 1 sophos firewall each, network A (Public IP/80.80.80.128, Local Network/192.168.20.1/24) and network B (Local Network 192.168.10.1/24). Sophos B XGS107 ( SFOS 19.5.3 MR-3-Build652) Sophos A XG135…