Hi all, Is it possible to got interface- & error details for a LACP-connection? Thx Dirk

Hello, I'm reconfiguring my fw (latest OS version), changing the zone and IP of my reverse proxy, from LAN to DMZ. Externally I'm able to reach my web sites with the RP on LAN, but if I change the zone and internal IP in firewall rule and NAT rules…

I noticed a strange mixing of DHCP settings when having 2 reservations for one client MAC address. console> system dhcp static-entry-scope show global I have a VLAN on the XGS lets say VLAN10 Net: 10.1.2.0/24 GW: 10.1.2.1 On that VLAN is a XGS DHCP…

Hi all I have performance problems with the xg86w, the cpu sometimes reaches 100% the top command gives the following result: Thanks you.

I've got a Site connected with RED60 The RED itself uses a single IP Subnet /31 IP Address and has 4 VLAN with /26 Subnets attached. In the Mgmt VLAN are Sophos APX Accesspoints connecting to Central. That setup was running up and fine for years…

We are using BGP as the routing protocol to our ISP who provides us with two indepent WAN links and gateways which we can use as active/active or active/backup as we like. It seems that any setting in the Routing -> Gateway section of SFOS and the corresponding…

Hi I have XGS4300 (SFOS 19.5.4 MR-4-Build71),DNS change Automatically in Sophos Firewall it can possible or not can you please guide how to resolve this issue.

Hi, Starting yesterday, I've received a few dozen Central email alerts on DDNS issues. The first issue is I'm getting alerts for the DDNS configured in the XG-125w: " What happened: FQDN xxxxx in location xxxx LLC isn't resolving to a valid IP address…

I am using Sophos Firewall SFOS 20.0.0 GA-Build222. How do I setup DNS over TLS (with Cloudflare)? I can't find any instructions on the Sophos help pages.

I have an APX320 on Port1 of an XGS. The original setup was to first bridge Port1, PortF1, and Port4 onto a bridge, LAN_Bridge, and then have the AP send three of its SSIDs down VLANs and bridge the other SSID to its LAN (LAN_Bridge). So the VLANs (LAN_Bridge…

Hallo zsm, und zwar haben wir einen neuen Standort mit Unify und einer Sophos FW ausgestattet. Überall im Unternehmen ist bereits eingestellt das die Authentifizierung zum WLAN über Radius funktioniert. Das funktioniert auch laut Log am neuen Standort…

I had our Sophos XG87 configured by our reseller when we bought it, since I knew nothing about how to do it properly. I've learned a lot and have changed quite a few things, but want to make a foundational change that will require destroying several things…

Port 1 was configured for LAN Usage VLAN 20 was added to Port 1 Port 1 was then unbound, VLAN 20 went away. Created VLAN 2 on the (unbound) Port 1 Wanted to create VLAN 20 again and add to Port 1 as well Get message " Interface name exists.…

Hallo, leider bekomme ich IPv6 auf einer Sophos XG v20-MR1 an einem Telekom Glasfaseranschluss nicht zum laufen. Die XG hängt direkt am Telekom Modem/Medienconverter und macht die PPPoE-Einwahl. IPv6 ist auf dem WAN-Port aktiviert, allerdings…

Hallo, ich versuche gerade, IPv6 auf einer XGS einzurichten. Folgendes Problem: Ich habe eine interne LAG mit einer festen v4-Adresse und einem (weiteren) VLAN, welches an dieses gebunden ist. Wenn ich IPv6 aktiviere (LAG od das VLAN-IF), muss die…

I've found a number posts requesting assistance with this, but it appears that no one has had a win. We have multiple sites, all which have multiple WANs configured. In some cases, it's Active/Backup, in others, we are load balancing multiple WANs …

I could swear that back in the day (maybe 18.5 or 19) that DDNS updated every five or 10 minutes and you could see this in the logs. We were using Google -- which has now sold its business -- and have switched to Cloudflare, and I'm not seeing any updates…

Kinda stupid question: Is there any "how-to doc" to setup a simple IPv6 dual-stack enviroment on XGS? Maybe the "right and secure" way to implement from v4 only to dual-stack? Nothing special need, just that a IPv6 client can reach the WAN via IPv6..…

Hello, I have a bridged interface. Port 1, 4, and 8. VLANs 1, 10. the bridge is in the LAN zone. VLAN 10 supports nearly all traffic, VLAN 1 exists for a private wifi network that allows guests/vendors to use the internet, but prevents them from…

Hallo, ich habe auf meinem Proxmox Server, welcher bei Hetzner läuft, eine Sophos Firewall als VM laufen und würde auf dieser gerne IPv6 einrichten. Standardmäßig ist bei Hetzner ein /64 Subnetz dabei. Zusätzlich habe ich jetzt auch ein /56 Subnetz…

There is an option to set the gateway to be activated manually. Is the process just to login to the firewall and change it from backup to active or is there something that becomes apparent when there is a gateway failure? I checked this documentation…

Customer is installing a new ISP connection but will have the old one for a while as they have WAF to an internal server, and DNS pointing to current ISP PIP. Left Port2 configured as it was. WAN zone, with static IP info. Configured Port3 to be the new…

Hello, Please some help understanding the following scenario: VLAN ID - 400 VLAN ID - 410 On the network with vlan ID 400 I can use the ip gateway from VLAN ID 410 and it works! Rules are applied correctly (from VLAN ID 400). This happens in all the…

Hello, I'm kinda new to networking and I'm currently working on a network lab to enhance my understanding of firewall concepts. My setup consists of the following: Virtual Machines: Kali Linux VM (IP: 192. 168. 10. 128) Windows VM (IP: 192. 168…

Hallo zusammen, ich bin sehr gerne jemand, der Sophos benutzt. Früher UTM nun XG. Wir sind von WatchGuard gerade umgestiegen und nutzen nun eine XGS2100. Soweit sind wir auch zufrieden, nur die alten Sekundären Netze sind ein Problem. Wir haben…