Hi We have generated a Splunk API key to integrate with Alerts being sent to Splunk and when we do so the alerts in the Dashboard seem to stop. Is this normal? Do I need to amend the script to stop this from happening? Thanks, Anish

Hi I am running a number of XGs on v18 latest revision, and they are all reporting VPN down every hour around the time the IKEv2 re-key occurs. The VPNs are all working as expected. This alert is then pushed in to Central and also sent out to all…

Hi, Is there any link with the rules description and rules ID for the Sophos Optix alerts, I've been looking in the official documentation but was not able to find anything related to the rules information. Also is there any documentation related…

Hi everyone I want to know if there is a form that I can to sent alerts of sophos endpoint and xg firewall to telegram?

Hi All, How do I go about in setting up email alerting in Sophos Central when a virus/spyware, adware or PUA is detected on real-time scanning similar to enterprise console for Server Protection. Have looked everywhere but cannot see this option. …

I have months with this alerts and i dont know how to clean them, my Sophos Firewall is updated at this date.

Hello, I am a sophos partner and one of my potential clients is consulting me if you can integrate sophos reports with an external tool. I was reading several links of the community and several KB. Try the Python script but still not much information…

We are trying to fetch historical Sophos alert data from Sophos API. How can we get a historical slice, with a start and end date, of Sophos alerts for a client? I do see there are endpoints ( event-controller-v-1-impl AND alert-controller-v-1-impl )…

Hi friends, Im trying to set an alert to show to the user "go to this site is not the best but, you can go, clic on continue" or something like, but instead of that it only shows a NET::ERR_CERT_AUTHORITY_INVALID on chrome. Does anybody know if i can…

Hi All We have about 30 servers with Sophos Central and few days ago we got an alert on all of them saying they need to be rebooted after some Sophos updates been installed. I have rebooted all the servers but alerts still there. Do I need to clear…

For some time now, as a Sophos Partner, we often get asked by customers if it is possible for Sophos Central to filter out certain alerts, check all the boxes of the filtered alerts and acknowledge/clear them all in one go. Unfortunately, this feature…

Hallo zusammen, nach erfolgloser Suche im Forum habe ich mich entschlossen einmal eine Frage zu formulieren. Es ist eine Sophos im Einsatz (9.506.2) auf der sich etwa 75 Regeln befinden die verschiedene Dinge erlauben. Alle Regeln werden geloggt…

I recently had to troubleshoot a users machine in which, uploading to an "online cloud storage solution" (S3, Dropbox, OneDrive all did it) caused the machine to freeze ( the hang time was determined by the filesize ) when browsing to select the file…

We know that some computers have alerts on them for trojan infections, but those alerts are not showing up in our dashboard. We see them if we go to the device itself and view the alerts. Why are they not displaying on the dashboard? Any help you can…

Hi, since I am using XG, I'am getting always IPS alerts, and I am concerned about, because I don't know the reason of these alerts. Are IPS alerts a alert about accessing websites with vulnerabilities or outdated software, or means an IPS alert…

Sometimes in the morning when I come in to the office I notice I have "Real Time Detection Disabled" alerts. The thing that bothers me is that the users and machines this is happening to/on do not have the rights to disable the protection service. By…

Hi there, We have 15 XG appliances we manage with SCFM, but for some reason, one of them constantly disconnects and reconnects to the SCFM. The client's internet does not drop, but every couple of minutes, we receive a notification from SCFM saying…

Hi there, We have roughly 20 XG units in our Central Firewall Manager. All are showing online, all are sync'd, and all show correct licensing information, however, every so often the SCFM send us an alert saying that all 20~ of our XG units will expire…

Is there a way to investigate the VPN disconnect between Astaro SG210 and SonicWall TZ105? The logs indicate VPN connection established; but did not notice VPN disconnect or WAN port disconnect.

We want the historic alert information for reporting past data. Could someone help with this.

Hi All, I have a UTM 9 virtual appliance I am using for a HTTPS proxy and I see there are two updates that require a reboot. Is there a way that the appliance can send me an email when it needs attention? I am trying to make sure my google business…