• Ipsec tunnel is up alert on mail.

    Kiran Jedhe
    Kiran Jedhe
    Received the below alert by mail but such is no configuration or any log found on the firewall. Any one idea about this.
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • Delay in Central Management Alerts since 04/20/2024

    FFin
    FFin
    Are there any known issues with central management communication currently? Starting on 04/20/2024 i'm getting central-alerts with massive delay of 3-9 hours. (SFOS Home, V20.0GA) I've an fixed PPPoE reconnect every morning at 3 a.m., so i expect an…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Too many failed sign-in attempts - what is happening!?

    Sofos network
    Sofos network
    Hi all, I've been receiving this alert for a while now, let's say at least 2 years!!!, at varying frequencies. sometimes several times a day, sometimes a few times a month. when I check the hosts, I don't find anything in particular, sometimes it even…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • Large amount of 'unreachable' alerts several WAPs - then they work fine

    TimAlbertson
    TimAlbertson
    This is our first go around using Sophos Central to manage a mix of APX120 and APX320X. We wanted the consistency of using one wireless controller since the APX320X can't be managed by a Sophos Firewall. The firewall is a Sophos XGS 136. Several times…
    • 10 months ago
    • Sophos Wireless
    • Discussions
  • SERVER-WEBAPP SNIProxy new_address Stack Buffer Overflow

    Edgar Leon
    Edgar Leon
    Need help with this issue in sophos Message: SERVER-WEBAPP SNIProxy new_address Stack Buffer Overflow
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Is there a way we can see the detailed reports for alerts in Advance Threat? Such as IP and etc? We only see the device number

    Gideon Orozco
    Gideon Orozco
    Currently we are using Sophos XGS 4500 and we are receiving alerts in Advance Threat however it only shows the device (see image below). Is there a way where we can see a detailed reports such sa IP and etc? Also, what is the "X45007...." device indicated…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • How to receive the status change when the AP becomes UP?

    ymita
    ymita
    Hi, The AP currently does not support a feature that sends alert mail when it becomes Up state. How can I know when the AP becomes Up? Can anyone share a workaround for this?
    • 11 months ago
    • Sophos Wireless
    • Discussions
  • Unerwünschter täglicher Alarm für Dt. Telekom DSL Zwangstrennung

    Hans-Peter
    Hans-Peter
    Hallo zusammen, leider bekomme ich diesen Alarm ("[HOCH] Alarm für Sophos Central") nicht unter Kontrolle. Faktisch ist er ja richtig, nur komplett leider ungewollt. Im Einsatz ist ein Sophos Model: XGS126 (X12108K2K6R2W1A) mit SFOS 19.5.3 MR…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • *ALERT* Sophos XG Firewall -- Too many failed sign-in attempts

    Samuel Shipley
    Samuel Shipley
    This happens periodically, every few days, or a week will pass and it happens again. I've read other posts here indicating that this has been happening for years, with no answer to the problem. Nothing bad happens, and there appears to be no attempt to…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Alert on WAN interface

    Christophe Pecoul
    Christophe Pecoul
    Hi, We have a backup WAN interface SDSL. Sometimes the link is down for 30 sec or several minutes but comes back alone. It s due to saturations very momently The firewall send alert each time. Is it possible to configure an alert that is sent…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Getting brute force admin access attack from WAN but access is turned off?

    AllanD
    AllanD
    Got a bunch of alerts this morning that are a little concerning. Here is one of them: The issue is this is coming from our WAN port, a external IP address, but we have had all that access turned off since the initial install: Why would…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Open Vas Vulnerability scanner need to exempt Alert ID: 7002

    Terry VanWhy
    Terry VanWhy
    I have started using a security software that uses OpenVAS to scan for internal network and VPN connected network vulnerabilities. My XGS2100 corporate firewall is throwing thousands of 7002 alerts. How do I exempt OpenVAS internally and VPN based scans…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • edgedl.me.gvt1.com

    Gangababu Barla
    Gangababu Barla
    Found suspicious user access found in our scanned alert, kindly let us know what's the impact of this URL
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Sophos Central Alerts disappear after acknowledgement?

    Wayne Folta
    Wayne Folta
    [Is there really no Sophos Central User Forum? Just an API forum?] When you click to Acknowledge an Alert on Sophos Central (SC) for a Firewall that's being managed by SC, it disappears and there appears to be no way to retrieve it. The best I can do…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Cleaning up Sophos Central Alerts

    Oliver Böhm
    Oliver Böhm
    Hello Sophos community, we have integrated around 50-60 customers in Sophos Central. Around 100-150 alerts come together every day. So far I have needed about 30-45 minutes a day to clean up these entries by going to each customer portal individually…
    • over 2 years ago
    • Community Chat
    • Discussions
  • Cloud Optix Alerts

    Ryan Berckmoes
    Ryan Berckmoes
    What happens to alerts for assets when the Cloud Optix license limit is exceeded? Will they still remain on the Cloud Optix dashboard/alerts page or do they get removed automatically, even if not resolved?
    • over 2 years ago
    • Sophos Cloud Optix
    • Discussions
  • Agrab

    Paul Johnson1
    Paul Johnson1
    Hi, Im starting to get "SCAN Zgrab Scanning Attempt Detected" alerts, I understand who would use these, however how do I stop the alerts as they are ~+ Im sure
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG L2TP VPN Disconnection Notification - Delete - question posted in the XG Community

    Lonnie Thibodeaux
    Lonnie Thibodeaux
    I typically connect to multiple XG firewalls using a L2TP connection. Issue is when I disconnect I get an email alert that the session was terminated (I know, I terminated the connection). As an MSP, I get alerts for a lot of things, and this seems entirely…
    • over 2 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • New firmware ready for installation Alerts

    SOMOA
    SOMOA
    Hello Is anyone else getting New firmware ready for installation emails from their firewalls? I have gotten 3 or 4 emails from each firewall so far in the last 24hours.
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Syslog alert - virus unscannable

    johnm_19
    johnm_19
    We received the belwo critical alert from our syslog server for a couple days with various source computers and a couple destination IP's (cloudflare is one). I log into the UTM/device and I can't find a 'Virus' or 'Anti-Virus' log. device="SFW" date…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • IPS Alerts which I cannot get rid of

    EdmundSackbauer
    EdmundSackbauer
    I am getting alerts like this per mail: Alert for SFVH (SFOS 18.5.3 MR-3-Build408) Cxxxxxxxxxxxxxxxxx Device Information: Hostname: gate Management Interface IP: 10.0.0.254 Date/Time: 2022-04-10 16…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • No Alert is triggered when a server's endpoint install stops checking in.

    Steve Klassen
    Steve Klassen
    I have brought this up before and submitted a request on it... however I need to bring it up again. It is a huge miss, that my server's install of the endpoint software was not checking in to SOPHOS Central for 2 months, and no alert was triggered.…
    • over 2 years ago
    • Sophos Central
    • Discussions
  • *ALERT* Sophos XG Firewall - HTTP virus detected

    Sheraafoods company
    Sheraafoods company
    I have receiving too much of these errors. *ALERT* Sophos XG Firewall - HTTP virus detected. Can you able to help me with this.
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • How do I delete or refresh my CM account?

    rfcat_vk
    rfcat_vk
    Hi folks, my CM account appears to have a configuration issue regarding heartbeat, so the question is how do I refresh the account or delete it so that I can start a new account (home use)? Ian
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Receiving Intrusion Prevention Alert Daily With No Information To Treat It

    Mathew Smith
    Mathew Smith
    Hi Everyone, One one of our Sophos XG applicanaces, we are receiving this alert daily, but it does not provide any information on what to do to prevent it. If you click on the link provided in the alert, it takes you to the Sophos knowledge base,…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
>