• XGS ATP Alert (No Host Name or Threat)

    Peter Mastrangelo
    Peter Mastrangelo
    Today our XGS started reporting ATP sources blocked without a Host Name, IP, or Threat. There is also no information under Monitor & Analyze > Reports > Network & Threats: Advanced Threat Protection How do I go about tracing down the issue? …
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SFOS 19.5.3 MR-3: Web Server Protected, Path-Specific routing - should this config work?

    gavo_nz
    gavo_nz
    Hi, I have a WAF rule configured for path-specific routing, however, the routes I am specifying are all to the same target web server, but with different restrictions. e.g. / - restricted to specific IP ranges, target sevrer1 /myapp/ - not restricted…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • IPS update pattern drop packets

    GuiSeb
    GuiSeb
    Hi, we have a SFOS 19.5.3 MR-3-Build652 and since few weeks, when the ips update the patterns, the sophos firewall drops all the packets for 30s. It will never do that before . Is this a bug ? Thanks Regards,
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • EMAIL DKIM issue QUARANTINE with policy allowed

    philbert
    philbert
    We use Sophos Firewall as EMail Protection for incoming Mails. Firmware: SFOS 19.5.3 MR-3-Build652 SMTP deployment mode: Device acts as a Mail Transfer Agent (MTA) DKIM Settings: DKIM is set to accept, some mails will be quarantined by DKIM verification…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos SSL VPN - Severe performance issue after upgrade to XGS-2100 SFOS 19.5.3

    Graboid$
    Graboid$
    We previously have XG-210, SFOS 19.5.2 but due to EOL on XG-210, we are forced to upgrade to XGS-2100. We are now running the latest SFOS 19.5.3 on the new XGS-2100, and all SSL VPN users are experiencing severe performance issue. The issue is impacting…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • .tar files for TLS exclusions for Office365 updates not available

    ADJ
    ADJ
    I need to add the TLS exclusions for allowing Office365 updates through because the Web Protection module is blocking them - I can update my Office365 apps fine without the protection as this has been tested successfully. My firewall is XGS87 running…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • XGS to SG UTM IPSec VPN not reconnecting, staying in disconnected state forever (IKEv1)

    LHerzog
    LHerzog
    IPSec Site-2-Site VPN from initiator XGS to receiver SG firewall. the XGS is on v19.5.3 IKEv1 (caused by SG capabilities) Whenever someone rebooted the ISP router on the XGS site, the XGS will not re-initiate the connection and sits there disconnected…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • XG310v3 HA Active/Standby site-to-site VPN connections, 19.5.3. Unable to edit, delete or change status.

    Esa Salminen
    Esa Salminen
    Figured as since I cannot find anyone else experiencing this issue, wanted to highlight this here if it helps someone else or if Sophos want to investigate themselves. FW type, config and version in subject. TLDR: Disable HA if you experience issues with…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Unable to set different preshared key for different remote access VPN tunnel

    SLS Support
    SLS Support
    We recently converted the UTM to Sophos Firewall OS (SFOS 19.5.3 MR-3-Build652). This Sophos Firewall interface is much worse than the UTM interface and buggy as well. One issue we found is we are unable to set different preshared key for different Remote…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Set an indipendent second WAN interface

    LeonardoM
    LeonardoM
    Good morning, I have two clusters of XGS 2100 in HA (Active-Passive) running with the firmware version 19.5.3 MR-3-Build652 . This is my current setup in both of the clusters: WAN1 (ISP) > Port2 LAN > PortF1 HA > PortF2 - PortF2 As per object…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Unable to obtain IP address from DHCP created for VLAN interface.

    kei
    kei
    Hi! Unable to obtain IP address from DHCP created for VLAN interface. The L2 switch is a NETGEAR GS308T and is trunked to the Sophos XG Firewall. I have an access point connected to the GS308T and cannot get an IP address via DHCP on my iPhone or…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Re-import users from Active Directory

    Fizzle
    Fizzle
    Sophos XGS 4500 19.5.3 Before I fully understood how the Sophos/AD import and integration worked with respect to users, groups, and authentication for SSL VPN I set up AD search scopes to import users. I didnt understand that Sophos would automatically…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Greylist synchronization

    Jos Verhallen
    Jos Verhallen
    Hello, Yesterday we have upgraded a Sophos XGs cluster to firmware 19.5.3 MR3-build652 and we noticed that one of the 2 nodes was greylisting e-mails coming from addresses that have e-mailed this organization in the past. Once we failed the nodes over…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Radius Authentication to Admin Interface Fails Despite Valid Test

    CF1 Tech
    CF1 Tech
    Hello, I am still relatively new with Sophos products. I've got a Radius server set up to authenticate users to the admin interface, but it's not working. I've reviewed the documentation several times and am unable to determine what I'm missing. I feel…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Empfehlung Upgrade XGS 2300 19.0.1 nach 19.5.3 ?

    StefanS
    StefanS
    Hallo zusammen, gibt es was zu beachten beim Upgrade von 19.0.1 nach 19.5.3 ? Gerade in Sachen VPNSSL und Remote IPSec etc. da wir etliche MA's im Home Office haben. Danke und Gruß Stefan
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • Sophos XGS, WAF für Windows RDS Server 2022 mit Rollenaufteilung

    Loranus Pain
    Loranus Pain
    Hallo Community, Ich prüfe aktuelle das Setting mit einer XGS ( SFOS 19.5.3 MR-3-Build652) und dem Windows 2022 RDS. Die Rollen RDS Web und Gateway laufen auf einem dedizierten Server, der RDS Session Host und RDS Lizenz Server sind ebenfalls ein jeweils…
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • Site-to-Site IPSec IKEv2 VPN

    Patrick81
    Patrick81
    Schönen guten Tag liebe Sophos Gemeinde. Ich würde gerne mal eure Meinung hören, da mich das Thema schon seit einiger Zeit verfolgt. Vielleicht weiß hier jemand, woran es tatsächlich liegt. Der Sophos Support konnte nur feststellen, dass eigentlich alles…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • When are Clients with no heartbeat allowed to rules with Heartbeat requirement?

    LHerzog
    LHerzog
    We have a rule that is configured with heartbeat like this: A device had heartbeat days ago but currently has no heartbeat. XG430_WP02_SFOS 19.5.3 MR-3-Build652 HA-Primary# ipset -L hb_green |grep 172.16.xxx.xxx XG430_WP02_SFOS 19.5.3 MR-3-Build652…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • DKIM issue with ed25519 selector

    Jules van Diesen
    Jules van Diesen
    One of our customers is encountering the following DKIM issue. Emails from two suppliers are consistently being quarantined due to DKIM verification. The selectors are as follows: s=strato-dkim-0003 c=relaxed/relaxed a=ed25519-sha256 b=512 s=strato…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Route-Based VPN - xfrm disabled

    Wolfgang Ritter1
    Wolfgang Ritter1
    Hallo Miteinander Ich habe ein Problem mit einer site-to-site VPN Verbindung. Die Ausgangslage war das ich zwei XG135 SFOS 19.5 so verbinde das ich den ganzen Datentransfer über den Hauptsitz führe und dadurch beide LAN Netze (192.168.10.0 und 192.168…
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • Web console access via WAN 19.5.3

    mk659
    mk659
    First off I understand the security implications of enabling web admin access via WAN. I've added a Local services ACL exception rule to permit one IP to the WAN interface for SSH/HTTPS access, however I still cannot enable https on the WAN interface…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SFOS SW Installer 19.5.3.652 failed to Boot ISO on Dell PowerEgde R350 & R640

    SR-M
    SR-M
    Dear Community Member, during the task to refresh our firewall Hardware, we try to install SW-19.5.3_MR-3-652.iso on Dell PowerEdge R350 but it fails, mount iso over idrac stuck at ISO boot without any output. Secound try was to make USB Boot Stick…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos XG with POP3 Scan

    Gerald Werner
    Gerald Werner
    We use a Sophos XGS87 (SFOS 19.5.3 MR-3-Build652) and we want to use POP3 Scanning in legacy mode. In document ( https://doc.sophos.com/nsg/sophos-firewall/18.5/help/en-us/webhelp/onlinehelp/AdministratorHelp/Email/HowToArticles/EmailConfigurePOPIMAPScan…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SFOS 19.5.3.652 failed to login to SSLVPN through RADIUS authentication mechanism because of access not allowed

    Vojtech Borkovec
    Vojtech Borkovec
    After updating to the version SFOS 19.5.3.652, users could not login to the VPN. Authorization is done on ESET's RADIUS server with OTP. The RADIUS server test will run correctly. There is an error in the log - failed to login to SSLVPN through RADIUS…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • BGP / MPLS internet access stopped working after firmware upgrade

    Rafael Forte
    Rafael Forte
    Hello, My company has an MPLS that is managed by the service provider, and all traffic going to the Internet from the MPLS sites comes first to my Sophos cluster which is in our main site. This was implemented a few months ago and was working fine until…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
<>