• Sophos Connect ipsec VPN Geo restriction

    onward
    onward
    In SFOS 19.x or 20.x is it possible to restrict Sophos Connect (remote access) ipsec VPN clients by country without putting a 2nd XG firewall in front of the XG serving the VPN? Example: permit client vpn connections only from Canada.
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Trying to connect a OpenVPN Connection to third party server

    Lino Baeumler
    Lino Baeumler
    Hi Guys, we have a network running with multiple sites. All the Sites are connected via IKEv2 Tunnel to our Sophos XG330 (via Lancom Routers). In each site we have a device running which is trying to connect (via OpenVPN Tunnel) (UPD Port 1194) to…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • IPsec Remote Access VPN - Change Client information name (field greyed out)

    Alexander Glänzer
    Alexander Glänzer
    Hello Sophos Community, I'm rolling out Sophos Connect Client and IPsec provisioning file via group policies for a customer right now, everythings working fine except for one thing. When the vpn provisioning file is imported to sophos connect client…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • IPSec Remote Access VPN not passing traffic XGv19

    Stefan Zauchenberger
    Stefan Zauchenberger
    We are fairly certain the setup is correct and the FW rules are in place, but remote access user cannot see internal resources on the LAN (other than the SOPHOS FW) when connected. After SOPHOS Connects successfully establishes the tunnel, the user can…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • iOS Built-In VPN mit Multifaktor-Authentisierung

    gian duri calonder
    gian duri calonder
    Hallo Kann man irgendwie den im iOS eingebauten Client nutzen um sich über IPSec ins Sophos Firewall-Netzwerk zu verbinden, jedoch mit aktiver Multifaktor--Authentisierung? Derzeit ist IPSec mit MFA eingerichtet, das würde ich gerne auf die Smartphones…
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • Disable auto reconnect for VPNs with Sophos Connect

    Martin Choy
    Martin Choy
    Hi peoples, So maybe i'm doing this wrong... im currently testing 2FA for VPN users. We are using the Sophos Connect client with IPSec into an XGS 116. Currently using DUO for the 2FA. Everything is connecting up fine, but i want to enable the option…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect Client not changing DNS server

    Technik Technik1
    Technik Technik1
    Hi, following problem. We use Sophos Connect Client version 2.2.90.1104 on Windows 10 and 11 and IPSec VPN. We set a prefered DNS on firewall. After the VPN connect, the DNS server is set on the VPN adapter settings in Windows. Than the problem began…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect / Provisioning File / Issue with additional connections

    damiri
    damiri
    Hi, started to play with Sophos Connect since some customers ran in to issue with it: 1. there is centralized management of Sophos Connect (correct me if I am wrong) 2. there is difference in SSL VPN and IPSEC connections, how provision file works…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Automatically Push Sophos Connect Upgrade

    damiri
    damiri
    Any development on this feature? What is suggested to customer with 500+ remote people working over VPN? (And Sophos ZTNA is not the solution. We already seen that is doesn't cover most use cases.) Automatically Push Sophos Connect Upgrade
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Allow IPSec from certain endpoints, deny the rest

    Jack Valko
    Jack Valko
    I understand I need to create a blackhole DNAT to block inbound IPSec traffic. What I also need to do is allow a few endpoints to establish a tunnel. To me, this means I need two NAT rules -- one to passthru legit IPSec and the other to blackhole. I…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Open VPN Client baut keine Verbindung auf

    Patrick81
    Patrick81
    Hallo schönen guten Tag zusammen, ich habe aktuell das Problem das auf dem Macbook der open VPN Client in seiner neuesten Version 3.4 + keine Verbindung mehr zur Sophos aufbauen kann, wenn ich die open VPN Client Version "downgrade" geht es wieder.…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • Notes / Comments in SCX file?

    Nez_Pottage
    Nez_Pottage
    Hi all, When editing an SCX file for Sophos XG / Connect VPN, is there a way that you can add comments into the file for information, i.e. in a split tunnel config, can we make a note of what the network address / range relates to? Current config…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Error VPN ipsec Client

    Alves I
    Alves I
    Hi everybody, For some time now, I have been facing some problems with the Vpn Ipsec client, which shows the following error below. This happens to any user who tries a new connection, from what I noticed, users who are already connected do not experience…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos L2TP VPN user unable to connect on v19.5.2

    Muhammad Abdullah Siddiqui
    Muhammad Abdullah Siddiqui
    Hi, We have around 40 users from which some Intercept X users (Windows 10) which are unable to connect over VPN. All the components are installed and even updates from Sophos central are reflecting on the end point. Below is the error which is shown…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • VPN: Can't Access Windows Share

    Alan Spark
    Alan Spark
    We have an XG 135 running SFOS 19.0.2 MR-2-Build472. Today we are unable to access a Windows share on a particular server over VPN (either IPsec or SSL remote access). We can access the share from the internal network and shares on other PCs are still…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS v19.5 IPsec Remote Access fallback - 2 WAN IPs

    IT Digital Life Sciences GmbH
    IT Digital Life Sciences GmbH
    Hi, we are using the IPsec Remote Access as our home office solution. We have 2 ISP-connections connected to 2 seperate inferfaces on our Sophos XGS 3100 . Once i configured the IPsec profile and policy I stuttered that there is no option to select…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Unable to set different preshared key for different remote access VPN tunnel

    SLS Support
    SLS Support
    We recently converted the UTM to Sophos Firewall OS (SFOS 19.5.3 MR-3-Build652). This Sophos Firewall interface is much worse than the UTM interface and buggy as well. One issue we found is we are unable to set different preshared key for different Remote…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Remote Access IPSec VPN - Configuration without WAN Port

    Jörg Falch1
    Jörg Falch1
    Hallo zusammen, wir haben Folgende Situation: Auf der Externen Firewall liegen unsere WAN Schnittstellen an. Eine freie WAN IP steht für die Konfiguration zur Verfügung. Auf der Firewall Intern soll das IPSec VPN konfiguriert werden. Dies ist jedoch nur…
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • Failed to Load Connection

    Brian Mowrer
    Brian Mowrer
    Hello, We have an issue where, occasionally, users begin getting a "Failed to Load Connection" error with the Sophos VPN client. We are able to resolve the issue by opening the user portal on the WAN. However, we do not believe this should be necessary…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • After switch from Intercept X to Windows Defender a problem with Sophos Connect has occured

    Emil_92
    Emil_92
    Hi all, Our customer has two Sophos XG firewalls in two different locations. After Intercept X was removed from the clients and replaced by Windows Defender, the Sophos Connect VPN connection is not stable anymore. First, Sophos Connect is connecting…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect service seeming not to work with HP Wolf

    Paul Gillett
    Paul Gillett
    We use Sophos Connect vpn for remote employees, but one new employee who is attempting to run the service on a Windows 11 machine is finding that he can enter his credentials and connect just fine, but is subsequently not sending or receiving anything…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect VPN client not connecting to remote Site-to-Site server

    Werner Smit
    Werner Smit
    Good day, Wonder if anyone can help me. Have a site-to-site tunnel with a remote server. The remote server is connected through a site-to-site tunnel to a different company so I don't have control on the remote side network. Now I am trying to get…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect - Autoconnect - MFA - Remote Users

    Andrew Bryson
    Andrew Bryson
    We have autoconnect enabled for users, and used to have MFA (Sophos) enabled. We had to disable MFA as it was causing grief for remote users with flakey Internet (and no other ISP options available). Internet connections would go down for a few seconds…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • IPsec remote access and DNS host entries?

    MikaR
    MikaR
    Hello What are correct DNS settings for IPsec remote access client so it would use DNS host entries from firewall?
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos ssl vpn auto connect Sophos Connect 2.2

    MR1
    MR1
    My company is looking to use the Sophos Connect 2.2 auto-connect feature. We are doing this to push out GPO settings and SCCM updates/settings. We are a remote university with many roaming users who don't talk to our network. My question is the following…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
<>