Not sure where to posting problem. A month ago on 10/20/2021, first reports from users unable to open PDF documents. Had users send screen shots of Sophos 'Content Warning' for a PDF document. We have a policy that users downloading certain file extensions…

How to separate a Guest Wifi WLAN with a Sophos UTM and a Ubiquity AP with only 1 AP and 1 port on your UTM. My Setup: Cable Modem -> UTM -> Unmanaged switch -> Ubiquity AP Laptops, NAS, Home Alarm are either hardwired to the switch or connect…

Hallo zusammen, wir möchten gerne per Syslog die Daten an einen zentralen Syslogserver übertragen und auswerten. Gib es dazu eine Dokumentation über die einzelnen Syslogfelder und deren Bedeutungen (ähnlich wie bei der XG) ? Gruß Stefan

Announcement: https://support.sophos.com/support/s/article/KB-000043103?language=en_US Eol overview: https://support.sophos.com/support/s/article/KB-000035279?language=en_US#sgseriesappliances Does anyone have any experience to migrate a global UTM…

Hello, first sorry for my english. My sg utm 230 has actually 3 Interfaces. ETH0 Internal Network: 172.16.30.0/24 ETH1 Internet with static IP ETH2 Internet: 172.16.31.254/24 with Default Gateway 172.16.31.1/24 I created a masquerading rule: Network…

Hello Community, I have a special testing scenario: We have setup DSCP values on our Computers for Microsoft TEAMS, e.g. DSCP 46 for audio port 3478-3481/UDP. In our test we want to use DSCP only internal in our LAN/WLAN. So, the UTM must rewrite DSCP…

Hi there, I´m having a hard time understanding some RADIUS authentication issues. For better understanding, a sketch of my setup: We have a UTM with Wireless Protection in the Head Office. We have a running Authentification with RADIUS for some…

Disclaimer: This information is provided as-is without any guarantees. Please contact Sophos Professional Services if you require assistance with your specific environment. Overview This knowledge base article explains how to set up an IPsec connection…

Hallo zusammen, existiert die Möglichkeit eine Liste aller aktiven WLAN-Clients (auf UTM 9) zu exportieren? Also im Prinzip die WLAN-Client-Liste (Wireless Protection --> WLAN-Clients) als csv herunterzuladen oder sogar über die APi oder per ssh abzurufen…

Auf einigen UTMs werden immer noch neue Let's Encrypt Zertifikate erneuert / neu ausgestellt mit der alten R3 / X3 Root Zertifikatskette. Das heißt diese sind ab morgen nicht mehr gültig. Deaktivieren und aktivieren von Let's Encrypt hilft hier nicht…

Hello guys, I have a weird routing problem and don't know how to configure routing probably to solve it. First of all, I'm the administrator of a company which uses a Sophos SG 135 with Sophos UTM 9.707-5 firmware. The firmware is up to date. To…

Hi everyone, im thinking about buying a Sophos UTM9 Appliance and i wanted to know which method of nat it is using (Full-Cone, Symmetric, Restricted-Cone or Port-Restricted Cone). Sadly I didnt find any information on this topic. Can someone tell…

Hi, wir wollen S/MIME einrichten und hier auch öffentliche Zertifikate verwenden, damit unsere Kunden der E-Mail vertrauen. Gibt es für die UTM ein Gateway Zertifikat oder ähnliches? Habt ihr eine Stelle wo man ansonsten günstig Zertifikate für…

Hello, we have UTM 9 Firewall , we have a problem with RED 15, since yesterday one of RED15 cannot connect to our firewall, on saturday we installed the firmware update, after the update everything worked. we use another 3 REDs that work. here…

After following the recommended steps below I was unable to find anything that needed to be removed. Recommended remediation steps: Identify the compromised machine. The IP address of the machine attempting to connect to the C&C server will be…

Hi, Ich habe vom meinem Provider (Deutsche Glasfaser) eine Framed IP mit PPPoe und 2 Framed Route IPs bekommen.: Framed-IP: - 156.xxx.xxx.21 Framed Route: - 185.xxx.xxx.114/32 - 185.xxx.xxx.115/32 Die beiden Framed IPs würde ich gerne für jeweils…

I am running Sophos UTM (Home edition) in Web Filtering mode. Is there any way we can control Youtube videos using either each individual videos or through categories(preferred option)? I saw few number of post here related to this but not able to get…

Hello, I have weird problem. I have new server with ESET PROTECT and I am trying to update users endpoint antivirus, but it is not working because firewall is blocking eset urls. I am using exception list for eset and when I try Policy Helpdesk it is…

Hello Hope to get some advice from this great community, as this problem is driving me crazy Our specs: ASG Software, Firmware version: 9.705-3, runing on a VMWare ESXi 6.0U3 We have like 50 RED devices, models 10/15/15w/20, most of them in Standard…

Hi, i have 2 WAN connections and a SIP-telephony connection. I am able to direct the SIP connection to a specific interface and the resulting RTP streams are working great. If the ISP1 fails, all connections work with the other ISP2 ... great ... BUT…

Hi everyone, this morning my colleague realized that all internet traffic was non-functional. It seemed like both HA nodes were in active state. After shutting down one of the nodes, things started working again. Looking into the logs I can see this…

In FW we use a Lets certificate that is automatically generated and renewed by the FW, but this month it has not renewed. We tried to manually renew but returned the attached error. As a workaround we are using our Wildcard certificate at WAF. What…

Hi all, i have the following Szenario: 2 Networks Network 1: 192.168.1.0/24 GW:192.168.1.254 (Sophos UTM) Network 2: 192.168.10.0/24 GW:192.168.10.252 (CISCO on ETH2 Sophos) Sophos ETH2: 192.168.10.1 I could reach the devices behind the CISCO…

I'm on version 9.705-3, and since sometime in May, the log files for Web Filtering have grown from 500MB daily to 2+ GBs daily. The logs are flooded with the below entry: 2021:06:28-10:26:55 FirewallName httpproxy[23287]: id="0003" severity="info" sys…

Hello everybody. Since a few month we have a unusual problem with our sophos utm which acts as a smtp proxy only. Sometimes we get "zombie emails" which clog up the whole email processing of the smtp proxy. I will try to explain the problem as accurate…