Hello, I found a solution where IPSec networks are distributed via OSPF and would like to know if this is correct? Can I use this in a productive environment? 1. SSH -> 4. Device Console 2. system ipsec_route add net 192.168.123.0/255.255.255.0 tunnelname…

[POST DE DEBATE SOBRE O ASSUNTO] Opa pessoal! Em minha infraestrutura eu tenho o escritório na matriz (XGS 3100) conectado a outros quatro escritórios filiais (XGS 136) por Tunel RED, utilizando a configuração RED Server no escritório matriz e RED Client…

We are wanting to connect our remote office, which is in a managed/shared office space building, to our head office. We have no control over the shared office netowrk. We have a XGS in the managed office space. The internet connection is supplied…

Hi, after updating to 20.0.2 the Site to Site VPN connection between our XGS (Host) and the Fritzbox is not working anymore. Before the Update is was workking without any problems. A downgrade to 20.0.0 is also impossible as the XGS always tells Firmware…

Hi, We need to establish a multiple site to site IPSEC VPN with a XG86w as the HQ. Both remote sites have a TELTONIKA RUT240 router. I am able to ping from HQ both remote sites, and from each remote site the HQ, but can’t ping a remote site from…

I Need help regarding my ipsec. I have two sites HQ and remote site. The firewall is connected through ipsec. I have set both inbound and outboud rules. But am still not able to ping each end of the firewall or to remotely access resources at HQ. Kindly…

My server is Sophos Firewall XG125 (SFOS 17.5.16 MR-16-Build830). Sophos connect works perfectly but the .ovpn file downloaded(via user interface) will not connect. I also used the details from the .tgb to build a config file for strongswan, but didn…

Dear Sophos Support, I hope this message finds you well. We are experiencing an issue with our Site-to-Site VPN setup. While the VPN tunnel appears to be up and stable, we are unable to access the servers that are sitting behind the Azure gateway…

Moin, Ich will zwei Standorte verbinden. Auf der einen Seite ist ein Subnetz die sich über eine PFSense auf die andere Seite über eine Sophos XG mit zwei Subnetzen verbinden soll. Phase 1 ist kein Problem, aber es wird nur ein Subnetz verbunden. Wenn…

Hi, I have configured the tunnel from DC to another location, The tunnel couldn't established. I don't know what is the reason the tunnel has down. I have debug the issue still unable to find out the issue, please assist me to resolve the issue

Hello, Recently one of our clients contacted us about purchasing some new Sophos firewalls. They had some VPN settings on their old Meraki firewalls. We have the VPN settings now, but it seems like most of these settings don't even exist in the Sophos…

Hi All - ive had this issue for over 2-3 years now - when trying to make changes on site to site vpns - either the changes take long to apply, dont apply or need to apply several times. i try to change local ID for example on an existing site to site…

Hi, I have a bunch of XGS firewalls in main offices of my customers, which have branch/remote offices with Draytek routers, different models. I have not paid attention till now, when one of those reported intermittent issues with Site2Site IPSec VPN…

Hello, I have a problem with an ipsec Site to Site tunnel. The tunnel is being built, but no traffic is going through the tunnel. The remote station is connected to a router via LTE and a Dyn DNS entry. I checked local and remote subnets. The firewall…

Hi I need to translate packets between an ISec and a RED 20. There is an IPSec tunnel with 172.18.10.0/24 on the remote site and 172.26.143.1/24 on the Sophos. I have a RED device with 192.168.54.1/24. I would access form REDs subnets hosts (maybe…

Greetings fellow members, I have 2 networks with 1 sophos firewall each, network A (Public IP/80.80.80.128, Local Network/192.168.20.1/24) and network B (Local Network 192.168.10.1/24). Sophos B XGS107 ( SFOS 19.5.3 MR-3-Build652) Sophos A XG135…

Hello All, The client has requested to know the uptime in the IPSEC VPN Tunnel. Sophos Model: XGS4500 Thank you

Hello, we have a problem which with the routing over VPN. A user is connected to SSL VPN with the XGS. The XGS has a site to site IPsec VPN connection to resources in the cloud. A request from the user's client using SSL VPN for resources in the…

We are trying to setup a IPSEC tunnel between a Sophos Firewall and a ISR4300 After activating its showing error Couldn't authenticate the local gateway. Check the authentication settings on both devices.

Hi all, when we try to add or change a configuration on the IPsec settings page on our XG/XGS Firewalls we always have to wait for about 2 minutes for the site to load and for it to be usable. The web browser shows the message "This page is slowing…

Hi all, AP configuration works. I am able to remove & add the AP's. AP's are recognized and shown as active. I can see the traffic between AP & XGS Port 2712. Traffic to port 8472 from firewall to AP is not answered, but i see packets from AP to APIPA…

After update to my xg firewall to v20 ipsec is become unstable. Randomly disconnection. openvpn client work without issue only ipsec have problem Some info: this setup worked for 2 year without a problem (another bug on v19 but fixed). Sophos firewall…

Hello @all, it is known that with IKEv1 on SFOS a new PSK overwrites all others PSKs if the gateways do not differ in the connections. Sadly I can not use IKEv2. Is it sufficient if just the local ID is different in connections and the remote ID is ANY…

Good morning. I have several XG/XGS of different clients configured with IPSEC against the same central, this central uses a CISCO firewall (we do not manage it). The problem we have is that every 30 minutes we receive an email from all the XG/XGS indicating…

Hi, What is the proper way to connect a branch having multiple internet gateways but the head office has only one gateway? The branch office WAN1 interface has a Real IP but WAN2 uses DDNS with a dynamic IP. Should the branch office have a failover…