Hi all, This article provides details on how to avoid RDP brute force attacks with Sophos XG. Please see below for details: Sophos XG Firewall: How to avoid RDP brute force attacks Regards,

Hi !, i have been stroubling with our XG firewall SFVH (SFOS 17.1.1 MR-1) i am trying to get RDP working for 1 of our pc's. (ip adres is 192.168.120.3) if i use it internal it is working correct. but from outside it is not working. this…

I'm doing some more testing on Sophos XG's HTML5 RDP client and have noticed a strange issue when connecting to Windows Server 2012/Windows 8.1+ clients. I should have the very important note that the system I'm testing on happens to be a touchscreen…

Hallo Gemeinde, Sophos ist für mich recht neu und ich versuche gerade in unserem "Labor" die FW für unsere Bedürfnisse anzupassen (bevor diese dann mal Live geht). Szenario: Ich möchte "erst einmal" ohne VPN eine RDP Sitzung von Extern auf einen Server…

Hello, we have two SG330 devices that operate in a hot-standby cluster. The internet connection in our main office, where the firewall cluster are located, is 50.000 Mbit/s SDSL (Up- and Download). If we use a new RED15w device on a good performing…

I am using RDP since about 10 years now and have nearly zero problem with local connections. When I connect to XG Firewall via Open VPN do I loose connections on regular basis. So on a good day I can work for 1-3 hours on bad days I have to reconnect…

Hi everyone, I hope that somebody will be able to help me with my issue. Problem is that I am trying to setup port-forwarding rule for host 192.168.1.15:3389 which I have defined. I have set up everything as shown here https://community.sophos.com…

I am currently running 17.0.3 MR-3 I would like to create a firewall rule from WAN to LAN that will allow RDP traffic from a specific real world IP. Basically, I want to be able to RDP into my home computer from work, but do not want to have the RDP…

Hi all, I have a problem connecting the Windows RD Client (mstsc.exe) to a remote desktop gateway behind port 443. Remote server Sophos UTM 9.5 (NAT forwarding port 443 to TSGW) TSHOST01 TSHOST02 TSGW+BROKER Client 1 Draytek Router…

Workstations on our domain are unable to RDP into workstations currently logged in by another user. Fast user switching is disabled and only one session can be active at a time... When attempting to RDP into a workstation, the current user in a session…

Hallo, ich habe eine UTM9.5 172.17.2.1/24(PPPoE und DYNDNS) und eine RED10 172.17.3.1/24 (RED steht hinter einem Router, Unitymedia FritzBox) Tunnel steht. Beide haben einen DNS & DHCP Server. Ich habe eine Maskierungsregel von UTM-> RED und von…

Hello, We are having difficulty with Windows Remote Desktop going through the XG Firewall (using it as the default gateway). The Remote Desktop connections temporarily disconnect every few minutes, then connect back up. It's happening with Windows 7…

I need help setting up a online rdp web portal. I know some utms you can have a web portal login and click a button to rdp to a computer on the network. Is this possible? I've looked online and didn't find much. Thank you Brock

Hi all, I want to allow RDP to a single server in our LAN zone but I'm not entirely sure if the rule I'm creating it's ok or not. So I hope you guys can give me a hand with this. - Eth1 it's our WAN interface. - When I have to use " Rewrite source…

My testing indicates that the insert key, which is supposed to toggle between insert and overstrike modes, does not work in the HTML5 viewer window. There is a pull-down menu for sending special keys, including the insert key, but this did not work either…

Hi- I'm testing out Sophos XG for possible replacement of a Fortigate system. Several of my users heavily rely on SSLVPN / Clientless VPN access options. With the Fortigate, I'm able to enable 2FA to login and let users use a Native RDP functionality…

hello after configure NAT role i checked firewall live log and see this transaction NAT rule #2 TCP 10.0.1.57 : 62362 → 196.218.167.4 : 3389 [SYN] len=52 ttl=128 tos=0x00…

Hi, My Sophos XG doesn't seem to allow RDP outbound when I only select specific Services allowed Outbound. I've created a new service object TCP 3389 and put it in the Allow list doesn't work. If i create a new rule to allow any services the RDP works…

When trying to initial an RDP session from the user portal, to a 2012R2 server or a 2016 RDS server, whether configured for RDP or TLS,I receive the following error: Error: Protocol Security Negotiation Failure. I can't find anything in the logs…

My work has disabled Remote desktop connection for port 3389, but allowing port 443. How can the UTM differentiate between web traffic to my domain xxxxxx.com and remote connection on the same port? I have tried to create a virtual web server with i.e…

Hi to all, I got error "Error: Protocol Security Negotiation Failure" after I try connect with HTML5 over the UserPortal. I try solution from thread: https://community.sophos.com/products/unified-threat-management/f/58/t/75897 without success. Locally…

Hallo zusammen! Ich habe ein kleines Problem mit der Konfiguration auf einen externen RDP (Kunde). Dieser verwendet folgende Adresse: utm.contoso.com:14444 Soweit alles gut. Ich dachte mir eigtl. das ich mit einer PORT Forwarding erfolg habe, leider…

Hi! I'm trying to figure out why XG installation refuses LAN clients to make RDP or SSH connection to WAN servers. Whenever I try such a connection, the packet sniffer first logs a correct connection request (dest. port 3389, for example) originating…

I have published several RDP targets through my UTMs over the years, but this particular one seems to have me stumped. So, here is my layout. Internet -->Router (Subnet 1)-->UTM--(Subnet 2) Subnet 1 houses all of my General use items (WiFi TVs, Game…

Does anyone know how to configure the screen resolution for remote desktop connections via the HTML5 portal? The resolution I'm getting on the clients is very low. Thanks! -Tom