Hi, I have an internal IP exposted to the public IP and this also works like it should. External traffic is translated to that host and you can access that host from the Internet. Now I wanted to add a SSL VPN Connection, made a firewall rule, a policy…

Hi! I can use Reports function to discover, for example, how many ssl-vpn accesses a user did yesterday. Is there a way to know if the disconnection, related to these accesses, occured due to timeout reason (set on 15 minuts for default)? Thanks for support…

I have some services running on a local server behind a reverse proxy and those services are protected from access outside IP subnets not specified in the reverse proxy settings. In my local router, I have the addresses for all these services listed…

On my phone connected via OVPN I can access local network resources by IP but name resolution won't work. VPN: SSL VPN (remote access) I have Policy Members setup Use as default gateway is on Permitted network sources IPv4 is set to my local LAN VPN…

Dear, I have a site-to-site VPN between a Sophos XGS87 and a fortigate. I need SSL VPN users on my Sophos to have access to remote networks from this fortigate. Local networks on the Sophos XGS87 side: 10.40.85.0/24 10.50.85.0/24 Sophos SSL VPN…

Hi, We have a Sophos XGS 107 (Client) connecting to another unit XGS 2100 (Server) via Site-To-Site SSL VPN. We noticed the Site-to-Site SSL VPN will not auto connect after the Client unit get restarted When it happened, we manually on/off the SSL…

Hi everyone, been curious lately, is it possible to have something like checkpoint conditional access (like is windows up to date, is defender/antivius activated and so on) before allowing to the vpn gateway. And im not talking abou ZTNA since that…

Hello we are disbled NETBIOS / WINS for our Domain Network on client side. Since we did this we have problems to authentificate on our domaincontroller through VPN SSL. With VPN IPSsec all is fine. Also in LAN all is fine. Both, SSL and IPSec using the…

Hello! I know that a few years ago there was a feature request on the currently retired Sophos's ideas portal, regarding remote access SSL VPN with certificate only based authentication, for Sophos XGS firewalls. Does anybody know if it's possible right…

Hallo zusammen, seit dem Update auf Version 20.0.0 GA Build222 kommt es in unregelmäßigen Abständen zu dem Problem, dass sich Benutzer die über einen SSL-VPN (egal ob es ein Endpoint per Sophos Connect oder eine Site-to-Site VPN per SSL über 2 Sophos…

After upgrading to SFOS 20.0.0 GA i activated the new VPN portal. We use only SSLVPN. If SSLVPN is running on port 443 and the VPN Portal on port 444 (or any other), the authentication log displays the correct SRC IP. This allows "Login Security" to…

Hello everyone, I searched the forum if there is a way to limit SSL VPN access to a specific Public Ip Address but it seems to me that You cannot do it. I see that when You create a Group or a User there is a section called "Limit access" that lets…

Moin, es ist für mich das erstemal das ich ein Sophos SSL VPN von Grund auf neu erstellen muß. Ich habe mir auch schon das eine oder andere Youtube Video angeschaut. Aber da werden dann die User Lokal auf der Sophos angelegt und es wird eine Lokale…

Hi, when using SSLVPN in split-tunnel mode, DNS resolution to internal resources is not possible. A ping returns "Host not found". When I perform a nslookup, the XGS is contacted and resolves successfully. I've also tried several VPN clients, including…

Hi, we are using SSL VPN and i have added public IP address in override hostname for vpn access. if ISP Failure that case i need to change or change in .OVA file. now we need to add hostname instead of ip address

I am a Mac user, until today I used Sophos Connect for Mac version 1.4 (ipsec VPN) I realized that there was a CVE on the Mac version of the application, but not on the Windows version, which has since been updated. So I'm at a dead end. My only option…

Hi, Currently we are using Firewall XG310 and SFOS v20 . My question is : 1. How to bind vpn user mac-address without asking their mac-address manually? Could sophos FW detect it automatically ? 2. Could we set vpn user state duration ? Example…

We have remote users to connect to a Sophos SSLVPN. We then create the following filewall rule between them and the servers to ensure that they have Sophos AV installed and that there are no issues on either side. Unfortunately, when we do this, no-one…

Hi, we are using HB policy for Lan user. VPN user how to create secure security policy because now we are using any any so i need to change. Is it possible to enable HB policy in VPN. VPN-LAN LAN-VPN Thanks SATYA

Hi, One thung bothers me regarding SSL certificates. I will have some 30 SSL VPN users on XGS , and I intend to install commercial SSL certificate. But it only has 1 year validity. Does it mean I will need to push .OVPN config to end users every year…

Hi all, So we have Sophos XG Firewall as well as the Sophos endpoint client for A/V, web filter etc etc... The issue I am having is that we have more detailed filtering at the firewall level so no issues when users are connected to the work network…

Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment. Special thanks to: Giridhar Katti Sreenivasulu Naidu Alok …

Hello Everyone I will explain the issue we came up with. In our company users use their company laptops to connect to the company through SSL VPN and then use remote desktop to connect to their computers. Some of the users they find it more comfortable…

Hello Dears, I'm facing a problem with openvpn 3.4.0 (9755) on Android after the update, My UCM is XGS2100 (SFOS 20.0.0 GA-Build222) any help, please ?? Thank you.

Hi Sophos Community Team, I Have Sophos XGS 136W Latest OS + Fixes including SSD Fix (that wasn't a fun update FYI). I currently am experiencing very slow VPN performance - like bare iperf speed is 500-900 Mbps and sophos VPN speeds between…