I have configured an SSL VPN to which I want to apply a restriction so that it only allows connections from Colombia, I have created the ACL allowing "Colombia" in the Source and selected the User Portal and SSL VPN services, after this I have disabled…

We have 2 XG330 in HA, a 300Mbit connection and are using the SFOS 20.0.0 GA-Build222 firmware with Sophos Connect. Using the SSL VPN with UDP we are seeing speeds of 3.6Mbit down and 6.9Mbit up. The Client has 100Mbit. I've read a lot of different…

Hello there I'm using version XGS2100 (SFOS 20.0.0 GA-Build222) and getting an error in SSL VPN Static IP When I use static IP for VPN user, the firewall cannot connect to the static ip of vpn user When i have the static IP Address disabled in my…

Wir verwenden im Unternehmen die Sophos Firewall und das Sophos Connect für den VPN-Zugang. Demnächst läuft eines unserer SSL-Zertifikate aus. Da ich noch recht unerfahren im Umgang mit Sophos bin, wollte ich nun wissen, ob das Auswirkungen auf unsere…

We created SSL VPN from Sophos firewall But still connection from sophos connect not stablished, the indication error displayed by this message " DNS Resolution failed for gateway : Firewall DNS Name

This message pops up when I try to connect. We have other people using the same setup without issue. Is there something wrong with my config file? It does connect, but it needs to be secure. My Config file looks like this: [ { "gateway": "REDACTED…

Hi, I have an internal IP exposted to the public IP and this also works like it should. External traffic is translated to that host and you can access that host from the Internet. Now I wanted to add a SSL VPN Connection, made a firewall rule, a policy…

I have some services running on a local server behind a reverse proxy and those services are protected from access outside IP subnets not specified in the reverse proxy settings. In my local router, I have the addresses for all these services listed…

On my phone connected via OVPN I can access local network resources by IP but name resolution won't work. VPN: SSL VPN (remote access) I have Policy Members setup Use as default gateway is on Permitted network sources IPv4 is set to my local LAN VPN…

Dear, I have a site-to-site VPN between a Sophos XGS87 and a fortigate. I need SSL VPN users on my Sophos to have access to remote networks from this fortigate. Local networks on the Sophos XGS87 side: 10.40.85.0/24 10.50.85.0/24 Sophos SSL VPN…

Hi everyone, been curious lately, is it possible to have something like checkpoint conditional access (like is windows up to date, is defender/antivius activated and so on) before allowing to the vpn gateway. And im not talking abou ZTNA since that…

Hello! I know that a few years ago there was a feature request on the currently retired Sophos's ideas portal, regarding remote access SSL VPN with certificate only based authentication, for Sophos XGS firewalls. Does anybody know if it's possible right…

Hello everyone, I searched the forum if there is a way to limit SSL VPN access to a specific Public Ip Address but it seems to me that You cannot do it. I see that when You create a Group or a User there is a section called "Limit access" that lets…

Moin, es ist für mich das erstemal das ich ein Sophos SSL VPN von Grund auf neu erstellen muß. Ich habe mir auch schon das eine oder andere Youtube Video angeschaut. Aber da werden dann die User Lokal auf der Sophos angelegt und es wird eine Lokale…

Hi, when using SSLVPN in split-tunnel mode, DNS resolution to internal resources is not possible. A ping returns "Host not found". When I perform a nslookup, the XGS is contacted and resolves successfully. I've also tried several VPN clients, including…

Hi, we are using SSL VPN and i have added public IP address in override hostname for vpn access. if ISP Failure that case i need to change or change in .OVA file. now we need to add hostname instead of ip address

I am a Mac user, until today I used Sophos Connect for Mac version 1.4 (ipsec VPN) I realized that there was a CVE on the Mac version of the application, but not on the Windows version, which has since been updated. So I'm at a dead end. My only option…

Hi, Currently we are using Firewall XG310 and SFOS v20 . My question is : 1. How to bind vpn user mac-address without asking their mac-address manually? Could sophos FW detect it automatically ? 2. Could we set vpn user state duration ? Example…

Hi, we are using HB policy for Lan user. VPN user how to create secure security policy because now we are using any any so i need to change. Is it possible to enable HB policy in VPN. VPN-LAN LAN-VPN Thanks SATYA

Hi, One thung bothers me regarding SSL certificates. I will have some 30 SSL VPN users on XGS , and I intend to install commercial SSL certificate. But it only has 1 year validity. Does it mean I will need to push .OVPN config to end users every year…

Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment. Special thanks to: Giridhar Katti Sreenivasulu Naidu Alok …

Hello Everyone I will explain the issue we came up with. In our company users use their company laptops to connect to the company through SSL VPN and then use remote desktop to connect to their computers. Some of the users they find it more comfortable…

Hello Dears, I'm facing a problem with openvpn 3.4.0 (9755) on Android after the update, My UCM is XGS2100 (SFOS 20.0.0 GA-Build222) any help, please ?? Thank you.

Hi Sophos Community Team, I Have Sophos XGS 136W Latest OS + Fixes including SSD Fix (that wasn't a fun update FYI). I currently am experiencing very slow VPN performance - like bare iperf speed is 500-900 Mbps and sophos VPN speeds between…

Hello, Began experiencing an issue with our SSL VPN connections when some Android tablets updated OpenVPN Connect app from 3.3.4 to 3.4.0. Symptom: SSL VPN connections are made successfully in 3.4.0 but no traffic flows. OpenVPN 3.4.0 is configured…