Hello there, I’m trying and failing to route all internet traffic from device 10.5.15.20 at SITE B across the layer 2 MAN and out ISP1 WAN at SITE A. I’m trying not to impact any other traffic at SITE B with this configuration, only internet bound…

Our network will consist of 5 access switches connected to a layer 3 core switch connected to a SG430. We will have several VLANS consisting of computers, VoIP phones, security cameras and card access readers. Total users will be around 100. We are fully…

The setup is a layer 2 switch with 2 vlans, Management (172.20.20.0/24) and Data (192.168.100.0/24). The vlans are separate port groups. The switch has a physical connection for each vlan connected to 2 interfaces on the UTM. The UTM is the default gateway…

Hello everybody, can these two devices work together? And if it is possible, what is the best way to connect this UDMP to Sophos? At the moment customer is using UDMP as router/firewall. Thanks

Hello, I have bought my first Sophos Firewall and I need some help. Setup: Port1: LAN - 172.16.0.1/23 Port2: WAN - Public IP (PPPoE) Port3: LAN - 192.168.1.1/24 Site-to-Site IPsec tunnel: Port1 172.16.0.1 (local site) - 192.168.0.1/22 (remote…

Hi, I've deployed Sophos XG to Azure virtual network and created routing table so that all traffic goes through Sophos XG. Behind firewall I have old preconfigured (used before fw implementation) linux web server connected to XG lan interface and I…

When I wrote the belowed static route, it is not shown in the route tables and it also doesn't work, any idea why?

Hallo Leute, ich habe aktuell FritzBox 6591 (10.0.0.1/24) und ein Öffentliches 30er Subnetz mit der Sophos SG230 OS 9.7xx Habe von der FritzBox 2 Lan Kabel an der Sophos. FritzBox LAN1 auf die Sophos ETH0 (10.0.0.254/24) Statisch FritzBox LAN2…

Hi there, I have no experience with Sophos firewalls. I recently purchased XG 125 for a small office. I have done the initial set up and the device is connected to the internet. I connected a level one switch (unmanaged) to the one of the LAN ports…

Hi Guys, I have a project currently trying to implement the XG into Azure. The client has 2 VNets running their Demo and Production servers, the firewall was deployed onto its own Vnet. We have done peering to the Demo environment from the firewall…

Hello Everyone, Apart from Sophos SSL VPN, I have a Centos based OpenVPN server, which is behind my firewall. My OpenVPN clients access that server through a DNAT rule. I have created a VPN tunnel (Site-to-Site) between Sophos XG and AWS, using this…

Hi guys, yesterday I installed a nice system consisting of a SG210 and 6 outdoor sites with RED60 at a customer. So far everything is great and I am very satisfied. For reasons of web filtering / IDS / antivirus / firewalling, etc., the REDs run according…

Setup Sophos XG 330: LAN Port 9 10.0.0.248/24 LAN Port 9.8 10.0.8.248/24 FIREWALL RULE: LAN any - LAN any ALLOW Port 9 plugged in Switch port 24 Layer3 Switch: VLAN 0 10.0.0.1/24 VLAN 8 10.0.8.1/24 Port 24 Trunk ALLOW ALL VLAN Port 1 VLAN=0 Port 2 VLAN…

Hello, i have a problem and i hope you can help me: 1) I have a zone called >RED, with my REDs in branch offices (Ip-network: 192.168.41.1/24) 2) I have some destinitions which are connected with IP-Sec connections (IP-Network: 172.30.200.0/24…

Hello, Today i found something weird on my UTM logs, the client downloaded some files from Internet and i see the the traffic it show opposite direction, the download content should appear as Inbound traffic but below screenshot show totally wrong.…

Hello, I apologize if this is a rookie question. I have 2 XG 430s in HA mode behind a Cisco 3900 router. ISP>Cisco>XG>Users My question is can we use the Firewall(s) for routing and eliminate the Cisco router? I believe it's only doing layer 3 routing…

I've tried to follow rfcat_vk's excellent documentation of the current state of IPv6 in SFOS. And I've been feeling like I'm missing out that my ISP doesn't offer IPv6 (they've said "coming soon" for a year now, maybe more). But the more I look into it…

Hi everyone! New with Networking. Is it possible to connect another router with a different ISP to my existing architecture? Please refer to the diagram below. The purpose of the "to be implemented architecture" is to allocate all the bandwidth…

Hi there, maybe the answer to my questions is quite obvious and I just don't see the forest for the trees... But I currently don't have a clue and I don't even know how to search for the answer. So please also bear with me if the question was already…

Not sure at what point this started happening, but users reported slow down with remote desktop sessions when a large burst of traffic from other vlans is being forwarded on other networks. The problem interface is Eth0 where we have vlans feeding into…

So, still in the middle of migrating from UTM9 to XG and experiencing growing pains. Totally retooling my network and I am having trouble understanding a problem that I have run up against. I have a managed switch that I have my wireless VLANs on (ports…

Hi All, newbie in Networking. Currently, we have this network setup We are planning to get an additional ISP exclusive for one of our departments. Is it possible to connect another modem(ISP) to our router and which configurations should I do to…

I have deployed an Active-Passive XG Firewall setup in AWS following the proper guide and have full routing and sorted out the health check on the load balancer for incoming services. One issue I am having is the incoming traffic is being NAT'd to the…

Everytime I create a new VLAN, I cannot receive a valid IP. Here's an example: Here's the configuration for my newly created DHCP for VLAN 130 -------------- -------------------- ---------- Sophos Router is connected to our Core…

Hi All, newbie in Networking. Currently, we have this network setup We are planning to get an additional ISP exclusive for one of our departments. Is it possible to connect another modem(ISP) to our router and which configurations should I do to…