• [Latest KBs] Sophos XG Firewall: How to avoid RDP brute force attacks

    Barb@Sophos
    Barb@Sophos
    Hi all, This article provides details on how to avoid RDP brute force attacks with Sophos XG. Please see below for details: Sophos XG Firewall: How to avoid RDP brute force attacks Regards,
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Firewall RDP Not working

    pieterknecht
    pieterknecht
    Hi !, i have been stroubling with our XG firewall SFVH (SFOS 17.1.1 MR-1) i am trying to get RDP working for 1 of our pc's. (ip adres is 192.168.120.3) if i use it internal it is working correct. but from outside it is not working. this…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Bookmarks HTML5 RDP client - touch screen required?

    whimdutr
    whimdutr
    I'm doing some more testing on Sophos XG's HTML5 RDP client and have noticed a strange issue when connecting to Windows Server 2012/Windows 8.1+ clients. I should have the very important note that the system I'm testing on happens to be a touchscreen…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Zugriff RDP von Extern

    Troxx
    Troxx
    Hallo Gemeinde, Sophos ist für mich recht neu und ich versuche gerade in unserem "Labor" die FW für unsere Bedürfnisse anzupassen (bevor diese dann mal Live geht). Szenario: Ich möchte "erst einmal" ohne VPN eine RDP Sitzung von Extern auf einen Server…
    • Answered
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Slow Performance via RED15 / RED15w related to CITRIX- Sessions and RDP- Sessions - SG330 Cluster

    Bepo
    Bepo
    Hello, we have two SG330 devices that operate in a hot-standby cluster. The internet connection in our main office, where the firewall cluster are located, is 50.000 Mbit/s SDSL (Up- and Download). If we use a new RED15w device on a good performing…
    • Answered
    • over 6 years ago
    • UTM Firewall
    • Remote Ethernet Device (RED)
  • Open VPN Win RDP loosing connection

    DAENG
    DAENG
    I am using RDP since about 10 years now and have nearly zero problem with local connections. When I connect to XG Firewall via Open VPN do I loose connections on regular basis. So on a good day I can work for 1-3 hours on bad days I have to reconnect…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • RDP firewall rule not working

    Roman Takac
    Roman Takac
    Hi everyone, I hope that somebody will be able to help me with my issue. Problem is that I am trying to setup port-forwarding rule for host 192.168.1.15:3389 which I have defined. I have set up everything as shown here https://community.sophos.com…
    • Answered
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • How to a firewall rule that only allows traffic in from a specific real world IP?

    guruerror
    guruerror
    I am currently running 17.0.3 MR-3 I would like to create a firewall rule from WAN to LAN that will allow RDP traffic from a specific real world IP. Basically, I want to be able to RDP into my home computer from work, but do not want to have the RDP…
    • Answered
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Windows RDP client not connecting to Remote Desktop Gateway with Loadbalancing

    Marc75
    Marc75
    Hi all, I have a problem connecting the Windows RD Client (mstsc.exe) to a remote desktop gateway behind port 443. Remote server Sophos UTM 9.5 (NAT forwarding port 443 to TSGW) TSHOST01 TSHOST02 TSGW+BROKER Client 1 Draytek Router…
    • over 6 years ago
    • UTM Firewall
    • Network Protection: Firewall, NAT, QoS, & IPS
  • No longer able to log users off via RDP

    Headache
    Headache
    Workstations on our domain are unable to RDP into workstations currently logged in by another user. Fast user switching is disabled and only one session can be active at a time... When attempting to RDP into a workstation, the current user in a session…
    • over 7 years ago
    • Encryption
    • Discussions
  • RED10 kein RDP,PING an Client möglich

    Leon Brans
    Leon Brans
    Hallo, ich habe eine UTM9.5 172.17.2.1/24(PPPoE und DYNDNS) und eine RED10 172.17.3.1/24 (RED steht hinter einem Router, Unitymedia FritzBox) Tunnel steht. Beide haben einen DNS & DHCP Server. Ich habe eine Maskierungsregel von UTM-> RED und von…
    • over 7 years ago
    • UTM Firewall
    • (Read-Only) UTM-Managed Endpoint
  • XG Firewall - Windows Remote Desktop Disconnecting

    STJ Admin
    STJ Admin
    Hello, We are having difficulty with Windows Remote Desktop going through the XG Firewall (using it as the default gateway). The Remote Desktop connections temporarily disconnect every few minutes, then connect back up. It's happening with Windows 7…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Web portal and rdp connect

    brock eldridge
    brock eldridge
    I need help setting up a online rdp web portal. I know some utms you can have a web portal login and click a button to rdp to a computer on the network. Is this possible? I've looked online and didn't find much. Thank you Brock
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Allowing RDP to internal server.

    John Henry Vindas Carballo
    John Henry Vindas Carballo
    Hi all, I want to allow RDP to a single server in our LAN zone but I'm not entirely sure if the rule I'm creating it's ok or not. So I hope you guys can give me a hand with this. - Eth1 it's our WAN interface. - When I have to use " Rewrite source…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Insert/Overstrike key does not work in HTML5 RDP

    DouglasFoster
    DouglasFoster
    My testing indicates that the insert key, which is supposed to toggle between insert and overstrike modes, does not work in the HTML5 viewer window. There is a pull-down menu for sending special keys, including the insert key, but this did not work either…
    • over 7 years ago
    • UTM Firewall
    • General Discussion
  • clientless access audio/printer or native rdp access

    whimdutr
    whimdutr
    Hi- I'm testing out Sophos XG for possible replacement of a Fortigate system. Several of my users heavily rely on SSLVPN / Clientless VPN access options. With the Fortigate, I'm able to enable 2FA to login and let users use a Native RDP functionality…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Can't log remotely via NAT

    MohamedSobhy
    MohamedSobhy
    hello after configure NAT role i checked firewall live log and see this transaction NAT rule #2 TCP 10.0.1.57 : 62362 → 196.218.167.4 : 3389 [SYN] len=52 ttl=128 tos=0x00…
    • over 7 years ago
    • UTM Firewall
    • Network Protection: Firewall, NAT, QoS, & IPS
  • Sophos XG v.106.01.2 - RDP Outbound Doesnt Work

    PowerOverwhelming
    PowerOverwhelming
    Hi, My Sophos XG doesn't seem to allow RDP outbound when I only select specific Services allowed Outbound. I've created a new service object TCP 3389 and put it in the Allow list doesn't work. If i create a new rule to allow any services the RDP works…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • User Portal RDP Connection: Protocol Security Negotiation Failure

    ScottBrown
    ScottBrown
    When trying to initial an RDP session from the user portal, to a 2012R2 server or a 2016 RDS server, whether configured for RDP or TLS,I receive the following error: Error: Protocol Security Negotiation Failure. I can't find anything in the logs…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Web server and RDP on same port 443, possible?

    magnusha
    magnusha
    My work has disabled Remote desktop connection for port 3389, but allowing port 443. How can the UTM differentiate between web traffic to my domain xxxxxx.com and remote connection on the same port? I have tried to create a virtual web server with i.e…
    • over 7 years ago
    • UTM Firewall
    • Network Protection: Firewall, NAT, QoS, & IPS
  • "Error: Protocol Security Negotiation Failure" error HTML5 connection over UserPortal.

    Elena
    Elena
    Hi to all, I got error "Error: Protocol Security Negotiation Failure" after I try connect with HTML5 over the UserPortal. I try solution from thread: https://community.sophos.com/products/unified-threat-management/f/58/t/75897 without success. Locally…
    • Answered
    • over 8 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Zugriff auf externen RDP mittels anderen PORT?

    HaraldRettenbacher
    HaraldRettenbacher
    Hallo zusammen! Ich habe ein kleines Problem mit der Konfiguration auf einen externen RDP (Kunde). Dieser verwendet folgende Adresse: utm.contoso.com:14444 Soweit alles gut. Ich dachte mir eigtl. das ich mit einer PORT Forwarding erfolg habe, leider…
    • Answered
    • over 8 years ago
    • UTM Firewall
    • German Forum
  • Why does IPS prevent outgoing RDP and SSH connections?

    oxident
    oxident
    Hi! I'm trying to figure out why XG installation refuses LAN clients to make RDP or SSH connection to WAN servers. Whenever I try such a connection, the packet sniffer first logs a correct connection request (dest. port 3389, for example) originating…
    • Answered
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • RDP of a Windows computer through UTM 9.3 between multiple subnets?

    GarryGalon
    GarryGalon
    I have published several RDP targets through my UTMs over the years, but this particular one seems to have me stumped. So, here is my layout. Internet -->Router (Subnet 1)-->UTM--(Subnet 2) Subnet 1 houses all of my General use items (WiFi TVs, Game…
    • Answered
    • over 8 years ago
    • UTM Firewall
    • Network Protection: Firewall, NAT, QoS, & IPS
  • How to configure screen resolution for HTML5 portal remote desktop connection clients?

    TomShinder
    TomShinder
    Does anyone know how to configure the screen resolution for remote desktop connections via the HTML5 portal? The resolution I'm getting on the clients is very low. Thanks! -Tom
    • over 8 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
<