Hallo, ich hatte den Datenverkehr zum Sophos-Support (eu2.apu.sophos.com) durch einen Site-to-Site SSL VPN Tunnel zu einer anderen Sophos geschickt, da der Zugang dierekt über WAN gesperrt war. Nun sollte dieser Zugang über WAN freigeschaltet sein.…

Hi, One of my IPsec tunnels shows a yellow icon under the status but when I click on the connection details, all subnet connections show green. Any Suggestions?

Hi team, is it possible with Sophos Openconnect to only execute the Logon Script after successful vpn connection (using the .pro file)? Or is it also possible to run any custom script or command? I read the articles and if I did understand correct…

Hi, We've run a flat lan for years at our main location. We've recently updated our network and added a few new VLANS to the mix. Now I have a problem. We have several Site-to-Site VPNs up and running that work great with our original VLAN1. However…

I've seen this question asked multiple times but we can't figure out what the issue is other than a problem with his physical laptop which doesn't make sense. Things to note: Their credentials work on my machine (so its not an authentication issue…

I have configured Remote Access VPN - IPSEC and I am able to establish a connection via the Sophos Connect app. However, I am unable to talk to any LAN devices connected to the Sophos XG 125W. Here are my configuration settings: 1. Remote Client…

Hello, we build a Sophos Connect Provisioning File for our XGS 3300 on FW 20MR1. We have the following Problem. If the Users "starts" the provisioning File and Enter his Credentials for log in, he gets an UserAuthentification error - with the Correct…

Hi there, I´m refering to this thread: Unsatisfactory implementation of provisioning + OTP in Sophos Connect client Is it still not possible to SETUP OTP during first Sophos Connect Login? Is it still necessary to have all users connecting to…

Hello - I have an XGS 2100 at HQ. We were using a RED device to connect the branch office Phone and LAN traffic via VPN to the HQ PBX/LAN and everything worked fine. Given the rollout of the latest OS, the RED is no longer compatible, so we are attempting…

Hallo, leider finde ich in den Doku keine eindeutige Beschreibung. Wenn ich zu einer Sophos hinter einer Firewall eine RED verbinden möchte: Welche Ports braucht die Sophos nach außen? Benötigt die Sophos Port-Weiterleitungen (Erreichbarkeit aus…

Hello, can you continue to use the SGs at the secondary locations as RED devices with an XGS or should you switch to an SD-RED 20 or SD-RED 60? Thank you very much

We have a XGS210 using Sophos Connect and SSL VPN. After 8 hours users are getting disconnected. There has to be an authentication time out that is set for 28,800 seconds but I can't find it. Can someone point me in the right direction? I'd like to increase…

Testing Microsoft Copilot+ Windows 11 laptops based on Qualcomm Snapdragon ARM CPU - Lenovo ThinkPad T14s G6 snapdragon in my case. I have seen old forums mention that ARM support was in the backlog for Sophos Connect. I suspect this question will come…

Hi Leute, ich habe ein kleines Problem bei der Einrichtung einer VPN Verbindung. Ich habe vom VPN Anbieter eine .ovpn Datei sowie ein Zertifikat im .p12 Format und eine .key Datei erhalten. Alles drei residiert im Dokumentenverzeichnis in einem Unterverzeichnis…

Hi, I have a Sophos XGS107 (SFOS 20.0.1 MR-1-Build342) setup with Site to Site vpn to a Mikrotik router. There is 4 vpn tunnels (or separate address pairs), It mostly works fine, but every other day one tunnel goes down. If I check in webgui >> site…

Hi all, we currently have 20 sites all using Sophos XG107 or XG 117 FW. all sites have a S2S VPN connection into AWS for SMB access. issue we have is failover internet, if failover is required then our VPN drops due to new IP. Failover internet is…

Hallo zusammen, wir haben eine Arztpraxis mit 2 Standorten mit XGS-Firewalls ausgestattet. Beide Standorte wurden über einen IPSec Site2Site VPN angebunden. Beide Standorte sind auch untereinader erreichbar, dass ist kein Problem. Standort A: 192…

Hi, Are there any specific IPSec Profile recommendations for connecting the branch office that does not have a static real IP Address? I am currently using the DefaultBranchOffice profile, but it disconnects automatically after some time. Thanks.

Hi, I read about all red modes but could not find a way to let the network behind RED Devices use the internet from their local internet gateway but take the web filter policy from the Firewall. Is it possible? Thanks.

Community, 50 branch sites that we want to deploy red devices to connect to HQ and route all traffic to HQ for content filtering, HQ LAN resource access, and internet breakout, Bandwidth for all branch sites: 10 - 30Mbps Bandwidth at HQ: 100 to…

Hello all, I have a situation with a IPsec VPN setup between two sites that have subnets that are the same. I followed these instructions and it worked ok; NAT with route-based IPsec when local and remote subnets are the same - Sophos Firewall However…

Hallo, ich habe hier zwei Standorte, die sind per Site2Site Tunnel verbunden. HeadOffice mit LAN-A und Branchoffice mit LAN-B, beide sind mit einem Tunnel verbunden, keine Probleme. Im BranchOffice steht eine XG125 ( SFOS 20.0.1 MR-1-Build342) …

HI - Time sensitive here, back against the wall (will pay outside consultant if needed). Sophos Partner, long out of the loop. I have (2) REDS. Both are reachable from main XG network. I am unable to reach the RED hosts from the SSL VPN. REDS are in…

Hello, with the patch from Microsoft KB5040434 07/2024 there are problems with Radius authentication for L2TP. Without the patch, the client connection works without any problems. What can we do? Best Regards Dieter

Hello all, we are looking at a situation where we need to set up a site to site VPN to a vendor who is using a Fortigate gateway, and the same subnet is being used at both ends. I have reviewed the below link which covers this situation for Sophos to…