1 Firewall 2024-10-26 14:10:51 Appliance Access Denied N/A 0 PortA1.10 10.10.1.3 10.10.1.255 137 …

Hallo Zusammen, ich würde gerne in der Sophos XGS107 eine Portfreigabe für einen Telefoncloudanbieter einrichten. Welche Ports das sind, wird hier sehr gut beschrieben. https://www.easybell.de/hilfe/telefon-konfiguration/allgemein/firewall-fuer…

SNAT with multiple WAN gateways isn't working.. WAN Gateway 1 = Port3 - its public with /27 worth of aliases WAN Gateway 2 = Port5 - its public with /28 worth of aliases (IP Host) SNAT with Port3 aliases work for all of the rules I've created…

Hi Sophos Geeks! I'm having a problem accessing my WEB Application using Public IP in my local network but working if I'm accessing it externally. I already configured the DNAT policy Source zone in Any Zone but still no lock. Currently my version…

Hi there, since some days, we encounter Bruteforce-Attacks against our Mainfirewall (Sophos XGS): Access from IP address '92.53.xxx.xxx' is blocked for '30' minutes after '5' unsuccessful login attempts I've tried to block all requests from…

Hi Sophos Community After a lot of trial and error I'm hoping you can help me finding a solution to my scenario: In my home setup I have my wan-interface of the sophos in a transit network. My ISP router forwards any traffic to the sophos. Now…

Hi everyone, I have some problems with the STAS service. The picture shows the topology: I have two locations, the HQ with an XG210, and the branch with XGS136. Both are connected through a VPN tunnel. The STAS server is in HQ location. The communication…

For firewall rules that allows access to a sensitive system (host) and where access is usually not required all the time, it would be nice to have a feature to enable them manually when needed but with a timer that disables the rule after 60 minutes or…

Hello there, I have been searching long time to do the following with Sophos XG 230 Firewall. But still could not find solution. Can anybody help 1. Block Microsoft 365 One Note alone. Rest of the Microsoft 365 should work. Blocking One Note on Application…

Hello, We've seen a message on the Sophos Firewall WEB-UI leading us to this article: "Multiple failed login (brute force) attempts for WAN-facing portals on Sophos Firewall" https://support.sophos.com/support/s/article/KBA-000009932?language=en_US…

Hi Folks, I'm moving from UTM to SFOS. Getting it setup with the basics was all fine but something I've been wanting to try for a while was to remove the masq rules as sophos is my back firewall in a back to back config. I ran into an issue though…

If you are not registered in Active Directory, you cannot access the internet. How can I do it?

Hello, Over the holiday weekend we upgraded our XG330's from 19.5.4 to 20.0.2 MR-2-Build378. After the upgrade none of our wildcard FQDN rules are resolving/working. They worked perfectly fine prior. This is causing quite a bit of issues for user authentication…

Hallo zusammen, seit Donnerstag bekomme ich ständig die Warnung mit folgender Nachricht: Message: Access from IP address '92.53.65.166' is blocked for '5' minutes after '5' unsuccessful login attempt. Unsere Firewall ist Alert for XGS2100…

On September 4, our Firewall VPN Portal was attacked from IP 92.53.65.166 (Russia) with hundreds of login attempts for different usernames. After bloicking this, today (September 8) we have been hammered by another attack, this time from hundreds of different…

Since today we have been experiencing massive password spraying attacks on many Sophos firewalls, especially on the VPN portal, which listens to port 443. Apparently these are attacks from Russia with the IP 92.53.65.166. How can I create a rule to prevent…

Hey there, How much of an impact to the internet speed does it make, if I create a new firewall exception? Since the firewall has to go through the entire ruleset, it should slow down every request a little bit. Is there an upper bound of…

have created a new alias port (Port 5:0) on our Sophos XG 210 (SFOS 20.0.2 MR-2-Build378) and created a local host at internal IP of 10.0.0.71). I have also created a firewall rule to allow access to this host from several specified remote hosts that…

hi, we have webserver in LAN zone that server access through private IP address IN LAN zone. issue-Right now user in china and access webserver through Vpn but in china vpn not connected only indian sim with roaming will work.how to access webserver…

Had a colleague port scan my WAN port after replacing my dead XG230 with a new XG230. I show all these open ports: I did not have this issue with previous fw (my previous config would not load, sadly). What am I missing? Thanks ahead of time…

My Sophos FW XGS2300 port forwording not working for a new port in the past 7days ago, the older port forwording still work normal. Please help me how to check and troubleshoot about this problem. My NAT and rule as pic below. Many thanks for support…

Good day We have deployed a Sophos firewall on a network, there was a cisco router and we have replaced the cisco router. After deploying the firewall the SAP system is not accessible on the local area network .. We have a SAP server in the LAN…

Do you have an article to help better understand routing on Sophos Firewall? I want my LAN to communicate with my WAN.

Our company own a sophos firewall xgs ( XGS3300), I try to delete user from 'Authentication' page but it failed, i able to disable the user account, but unable delete the user account. but some account i able to delete. i appreciate if there is…

static IP 203.122.47.42 on port 84 is showing as closed. We need to bind this static IP to the local IP address 10.0.1.134 . Please assist with this at your earliest convenience. Thank you.