SDWAN/IPSEC Tunnel Issue Setup Site A Sophos XGS 107 2 X WAN connections 2 X Route Based IPSEC Tunnels to Site B Site B Sophos XGS 87 1 X WAN connection 2 X Route based IPSEC Tunnels to Site A Issue Site B can ping and connect…

So i'm a bit confused and could use some help. After running NMAP on my public IP for a sanity check i was greeted with ports showing open that shouldn't be available to the WAN port. I don't have any services checked on my local service ACL for WAN Starting…

Hello, I'm currently working on an issue with a XGS 136W and an APX 320. When creating a wireless network, a new virtual adaptor gets created. All fine. However, I've noticed a difference between the XGS side and the APX side. When removing a wireless…

We have experienced this issue for the past year. Sophos support has been troubleshooting with no success although the firewall is rebooted immediately after the issue starts. Unfortunately this is a retail environment and customers are waiting and…

One of the XG115W firewalls lost connection to Sophos Central some time ago, rebooting device did not solve the issue so I've tried to remove and re-add the device to Sophos central. Whether I try OTP or user/password it errors. Now the button is not…

Hello everyone, I have XG2300 SFOS 19.5.2 MR-2-Build624 and I have an issue with the Remote access SSL VPN connection. The issue is that a user connected via Remote SSL VPN receives a reset connection from server at random. I have tried to resolve…

We are currently facing an issue with our Sophos XG230 Firewall configuration related to LDAP user authentication and group assignment for SSL VPN profiles. Current Configuration: Firewall Model: XG230 Firmware: XG230 (SFOS 19.5.2 MR-2-Build624…

Hi Sophos Community, We've had it reported to us by those that use the monitoring software that https decryption has stopped working. We aren't exactly sure when it stopped working, but it appeared to have done some time after moving to 19.5. Though…

Hi everyone So the performance and interface symbols in my control center are red. The interface when i click on it shows the gateway ip as red. I have attached a photo. The performance was orange and now it is red. Can someone please help…

Hi, just found out, that mails sent from SFOS 19.5.2 MR-2-Build624 are missing the Message-ID header, required by RFC. Not a critical issue, but our mail archive softwares complaines each time, a mail from our XGS should be archived.

Hello I am new to sophos, we are carrying out a POC with your firewalls and we are having a problem, the routes choose the xfrm1 interface but with the xfrm2 ip. From what I've read it seems like a BUG NC-114075 NC-113973 XFRM1 IP: 10.1.X.2 XFRM2…

Scenario is as follows: Sophos Firewall Version: 19.5.2, XGS 6500 Sophos Connect Client Version: 2.2.90.1104, Windows 10 22H2 Sophos Firewall is configured for SSL VPN and IPsec VPN. User adds .pro file in Sophos Connect. User is prompted…

Hey All, , So i had something interesting that got fixed today. On the old XG V17-19 when you create a IPSEC VPN, you didnt need to add a no NAT rule (I could be mistaken if some one can confirm this) But on the XGS, I had setup all the VPNs…

i try to connect my AD with sophos firewall 19.5.2 but dont work; i do all step on this document Sophos Firewall: Best practice for STAS but dont work i do all test and i have communication but never show me user on firewall and log only saw this error…

Today a Mac User had a SSL VPN connection and was authenticated with CAA client authentication agent against XG firewall 19.5.2. During work, the user authentication dropped - due to timeout, according to access_server logfile. The SSL VPN connection…

We download the new Sophos connect client from user portal. And uninstall old client and install the new one. Plus I contacted both ISP and they conf irmed no ports are blocked!?

Hi everybody! We bought two XGS2100 (SFOS 19.5.2 MR-2-Build624) routers to replace our two old MikroTiks. One router is at our main site where everything connect's to the network (NAT & ISP is here), and the other router is at the other site which…

Hi, our Windows 10 users use Connect Client 2.2.90 with the infamous .pro file to tonnect to XG 19.5.2 Firewall with SSL VPN TCP and access internal resources. The SSL VPN clients use the XG firewall as DNS resolver. The XG uses DNS forward rule for…

Hallo, wir haben eine XGS126 mit SFOS 19.5.2. Laut DHCP-Optionen Tabelle unterstützt Sophos auch Option 66. Ich kann allerdings Option 66 nicht auswählen (Option 67 wird ebenfalls nicht angeboten). Wähle ich Custom und Code 66 kann ich mit einer…

XGS136/ SFOS 19.5.2 MR-2-Build624 DNAT rule for on-prem mail server does NOT have email scanning turned on. Microsoft 365 Exchange Online Protection (EOP) is the spam filter. When I send an email to a distribution list of about 35 members from an…

I am investigating importing our TLS certificates using the SFOS API but running into an error that I am struggling to understand. The request XML: <? xml version "1.0" encoding "UTF-8" ?> < Request APIVersion "1905.1" > <!-- API Authentication…

Hello, since adding the Sophos XG as man in the middle / gatway to our network, we have speed issues more or less, specially over SMB. At moment the XG is connectet over 1 gig port to the main switch, the main switch has sub switches, at main switch…

i want to configure Guest portal with SMS , please guide me how to do it? how it will work? SFOS 19.5.2 MR-2-Build624

Hi I have a SFVUNL (SFOS 19.5.2 MR-2-Build624 i made a web filter with application filter for social media.. after than i found facebook not- block twitter some times blocked some times works Yahoo blocked msn blocked in general i found…

SFVH (SFOS 19.5.2 MR-2-Build624) home license. I have everything checked to be sent to Sophos Central reporting in the firewall. " Send reports and logs to Sophos Central" is checked in the Sophos Central services page. In Sytem services-->log settings…