Hallo zusammen, wir installieren aktuell komplett neue Infrastruktur mit HPE MSA & 4 verschiedenen Hosts. Bei unserer aktuellen Firewall SG115 sind alle 4 Ports bereits belegt, gibt es eine Möglichkeit unsere neue 2100 ins vorhandene Intranet…

I would like to segment my network into multiple LANs and VLANs. Right now, I have one happy LAN network, all shared with all devices. Small unmanaged switches in each room, converging to a large 24 port unmanaged switch in the office: Primary real…

I just replaced our old Apple "AirPorts" with Sophos AP 100C access points. When I enabled Wireless Protection I did the following: Enabled Wireless Protection with "Internal" as the allowed interface. Created a matching wireless network, Bridged…

I posted a similar question in the Wireless forum over a week ago, but got no replies, so I am trying in the general area. I am replacing my current access points with Sophos AP 100C models, to be run from the current UTM 9.7 software. The AP 100C is…

Our network will consist of 5 access switches connected to a layer 3 core switch connected to a SG430. We will have several VLANS consisting of computers, VoIP phones, security cameras and card access readers. Total users will be around 100. We are fully…

Hallo Community, bei mir hat die Advanced Threat Protection diese Meldung ausgegeben: Benutzer/Host Bedrohungsname Ziel Ereignisse Ursprung 1 xxx.xxx.xxx.xxx C2/Generic-A 185.7.214.104 1 Iptables C2/Generic-A",…

Sorry for the frivolous question, but ... I am replacing my current access points with Sophos AP 100C models, to be run from the current UTM 9.7 software. The AP 100C is designed to be hung upside-down from the ceiling, with the Sophos logo facing down…

Hi all, I am looking for a shell command to deactivate and activate a user. We want to prevent some users during specific timeframes during the day so they can't login with their VPN clients. We are already using a shell command / cronjob to deactivate…

Hi, I've searched for the solution for a long time and didn't find a way to make changes persistent regarding the IP address of Sophos SSL VPN users. If do NOT allow multiple CN from one user (certificate), you can force the UTM's OpenVPN daemon to…

Hallo, bräuchte Hilfe und komme nicht weiter Sophos UTM mit aktueller Version Habe eine aktive Site2Site verbindung kurze erklärung: mein Netz 192.168.2.xx Internet ausgang (fritzbox exposed host):192.168.178.3 die VPN hat auf meiner…

We have added a few internet-connected gadgets and devices to our household over the years. The Sophos UTM Home License is limited to 50 IP addresses. The problem is that both IPv4 and IPv6 addresses count against the 50. It is easy to exceed the limit…

Hello all, Having some issues with a pair of SG-330's running in HA Active-Passive mode. When I get Node2 powered on it stays on for about a minute, begins Synchronizing, and then powers off with seemingly no warning. When I power Node2 on without…

Hi, I'm in the process of deploying an XGS2300 to replace our UTM. The UTM currently manages a number of AP and APX devices. We're ordering some new APXs to replace the APs once ithe XGS goes live. The new APXs are held up due to the global supply…

Hallo, wir sind auf der Suche nach einer Möglichkeit, Verbindungszeitpunkte über SSL VPN und über NAT zu protokollieren und anschließend auszuwerten. Wie könnte man sowas am besten umsetzen? Hat schonmal jemand so etwas gemacht? Freundliche Grüße

I found a closed, 5 year old discussion with the same subject which bares revisiting. With IPs in just about every technical device (camera's smart TVs, appliances, lighting, speakers... the list goes on and on) is 50 still feasible for Sophos UTM and…

Hello all, May be a silly question, however, in the IPS service: Do we need to include the RED networks for remote offices as well? Similarly, do they (RED networks) need to be listed in the Firewall rule for Teams and the like: Finally, besides…

Hi, yesterday (sunday) at 3 am SNORT stopped to work with the result that internal nets couldn't reach Internet anymore. In the logs I found FATAL ERROR: Failed to load /usr/lib/snort/so_rules//file-java.so: /usr/lib/snort/so_rules//file-java.so:…

i have a doubt regarding about license, i am subscribe for 150 users in case the users exceed 25 more means the web filtering and protection will work for the 25 more users or the access will stop to exceed users.

Hi, ich muss Datenverkehr über einen anderen Internetanschluss übertragen, da dieser Providergebunden ist. Hierzu muss ein Server über den VPN über das HQ in das Internet. Konkret geht es um eine TK Anlage die den SIP Trunk nur über die IP des HQs…

Hello @all we have a major problem: We did not renew the licence with a customer (human error). Yes it was / is our fault. Now the VPN, since yesterday to us in the RZ, has stopped (Site2Site). Our distributor wants to deliver a key until 20.06…

Hallo @all wie haben ein größeres Problem: Wir haben bei einem Kunden die Lizenz nicht verlängert (menschliches Versagen). Ja es war / ist unsere Schuld. Nun ist der VPN, seit gestern zu uns in das RZ, stehen geblieben (Site2Site). Unser Distributor…

Hi Everyone, I wantet the old Endpoint protection for home users back. (I've allready vreated an sophos central account) i know it's very late. but i used another Soiphos AV Program a while. But i wantet the right Endpointprotection back is there…

Hi, I want to use a SD-RED20 behind an UTM with UTM 9.711-5 to connect a small office to headquarter. The connection from the SD-RED20 is established and working fine, for the local networks (few VLANs, split with a aruba, because the SD-20 can…

Ich habe hier mal ne Sauber Funktionierende VPN Konfig für Sophos UTM 9 zwischen FritzBox <--> UTM Quelle: https://confluence.home-hosting.de/display/IN/VPN+zwischen+FritzBox+und+Sophos+UTM+-+Update%3A+12.05.2022 [Mein eigener Confluence Server, die…