• How to block an user by Mac Address, when using dhcp relay?

    Mike Cruz
    Mike Cruz
    i just add a mac user, and a firewall rule to deny the service, but, it still working (the mac), any ideas? thanks a lot.
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • exclusion file and sub-folder wildcards

    mbutler522010
    mbutler522010
    I have a question about the anti-virus exclusion scope in the console. Microsofts recommendation for domain controllers ( link) says: The Sysvol\Sysvol folder uses the following location: %systemroot%\Sysvol\Domain Exclude the following files from…
    • Answered
    • over 7 years ago
    • On-Premise Endpoint
    • Sophos Enterprise Console
  • UTM 9 policy not blocking selected categories

    tony gonzalez
    tony gonzalez
    Hello - Recently I have been experiencing issues with my home policy not blocking the categories I chose (see screenshots). I have tried everything I know, still learning Sophos but I am out of ideas. am I doing something wrong? Respectfully, …
    • over 7 years ago
    • UTM Firewall
    • General Discussion
  • Sophos XG and Windows 10 Anniversary Update

    TareeqAli
    TareeqAli
    Hi All, I thought I would share this with anyone having an issue updating Windows 10 trying with the anniversary update. I would get the following error code when trying to download and install the update; 0x80200013. Looking into the issue I stumbled…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Feature request: better management of MTP & BT devices

    gdriggs
    gdriggs
    We are heading down the rabbit hole of granular peripheral management in conjunction with moving to cloud based encryption policies. The further I get, the more I'm seeing some potential improvement in the way MTP devices are managed. For example, we…
    • over 7 years ago
    • Sophos Endpoint
    • Discussions
  • What is "ZIP FILE DOWNLOAD" and "QUIC" on Sophos XG Firewall Report?

    Mike Cruz
    Mike Cruz
    Hi, my network is using a lot of bandwidth in that category, and i would like to know what it means. thanks.
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Warsaw / GBPlugin

    Carlos Roberto da Silva
    Carlos Roberto da Silva
    Hi, I am using Sophos Central with Advanced Endpoint in a customer and the financial computers use some banks website that need a Guardian, a program to protect the computer, the name of this guardian is GBPlugin / Warsaw When I install Sophos in a computer…
    • over 7 years ago
    • Sophos Endpoint
    • Discussions
  • Problema using STAC - Web filter

    RonaldoChamorro
    RonaldoChamorro
    Good morning, Since implementation we, are having problem with the active directory users that use thin clients. They can log properly, but can not use the appropriate web filter policies when they browse internet. This make that users have access…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Firewall rule not working - XG drops traffic - invalid traffic / denied by policy 0

    Felix Müller
    Felix Müller
    Dear all, for using sophos xg several month now I've struggle with some policy to allow blizzard's battle.net connection trough xg firewall. I've created following policy for allowing the services: SRC-Zone -> Client Zone SRC-Host -> Any …
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Force policy compliance like in the Enterprise console?

    Michele Lloyd
    Michele Lloyd
    In the Enterprise Console, we had the option to force policy compliance on endpoints. I've looked around in Sophos Central and don't see that anywhere. Just wondering if I am missing something. In reference to error: "A computer does not comply with…
    • over 7 years ago
    • Sophos Endpoint
    • Discussions
  • XG Rules Order

    feroz syed
    feroz syed
    hi, i have 150 client in my office. i allowed this 150 clients to use internet on Break time and except 10 clients. i make separate policy to deny any traffic coming from 10 users to Xg. Now the problem is on break time this 10 users able to access…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Sophos Central Policies vs. Enterprise Console Policies

    Fahid Shaheen
    Fahid Shaheen
    Hi everyone. I'm new to Sophos Central and at the moment we're testing it to see if it's a viable solution for our organization. We already have Sophos Enterprise Console on-prem. My initial view is that everything that we already have in SEC, we…
    • over 7 years ago
    • Sophos Endpoint
    • Discussions
  • sophos xg firewall traffic shaping by ip its possible?

    Mike Cruz
    Mike Cruz
    I have ip ranges or groups like 192.168.110.1-10 | Group A | Can use facebook | 20mb down, 5mb up 192.168.110.11-254 | Group B | No service | 0mb down, 0mb up 192.168.111.1-254 | Group C | Service without social networks | 10mb down, 2mb up (this…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Whats the difference between Source Networks and Devices, and Destination Networks? How to make and exception or something like, for an ip segment?

    Mike Cruz
    Mike Cruz
    Whats the difference between Source Networks and Devices, and Destination Networks? Im trying to make an special rule or setting for the ips 192.168.1.1-100 (group A) and another to the range 192.168.1.101-254 (group B) I suppose i have to add 1 firewall…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Guest Wireless Network - Allow Internet Access

    ChrisBacker1
    ChrisBacker1
    I have setup a VLAN 200 for Guest Wireless access on my Aruba IAP access points. I have everything I believe configured correctly on the switches where the AP's are attached and have their ports tagged in VLAN 200. I have the DHCP server setup on the…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Advanced timeshedule for webblocking

    SAATEN-UNION GmbH
    SAATEN-UNION GmbH
    Additional timeshedule for allowing user in private/free time to surf at YouTube or other Websites, that are blocked at worktime. We got business-Systems with privat use.
    • over 8 years ago
    • Sophos Endpoint
    • Discussions
  • Global list of pheripherial devices

    SAATEN-UNION GmbH
    SAATEN-UNION GmbH
    A list with all peripherial devices with grouping and filtering, Serial, vendor info functions to enable or disable direct in a list like People or Computers. Sorted via System and show if they are turned of or on via a policy. At the Moment i must…
    • over 8 years ago
    • Sophos Endpoint
    • Discussions
  • Device-Overview under Computers

    SAATEN-UNION GmbH
    SAATEN-UNION GmbH
    Hi, is it possible to add known (allowed) devices from "Computer-Detail-View" page to link it directly in a Policy? Can't see known clientdevices directly under "Computer Details". It is not realy comfortable to use the popup device-list within…
    • over 8 years ago
    • Sophos Endpoint
    • Discussions
  • Can not delete MAC HostRu

    ThomasHanslik
    ThomasHanslik
    I was playing around with the policy to check different combination. I´ve added a Mac host with a mac adress inside und applyed this policy. After that i delete this policy and i would delete the MAC host also but this is not possible. I can not delete…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • DNAT - FIREWALL - BUSINESS APPLICATION RULE - ISSUE

    Andrea cHESSA
    Andrea cHESSA
    Hi, I'm new in XG but I've installed Hundreds of Astaro (since V6) and Sophos UTM. In this days I've started to work with XG and this is my question, is this normal? as you can see with the same source IP, destination IP and port, sometimes the…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • HTTP 502 with scan http enabled on VPN connections only

    Cyril Voirin
    Cyril Voirin
    Hello, While remotely connected, I encounter an issue browsing internal resources on port 80 and 80 only. I receive an HTTP error 502 and this happen when the firewall rule for the VPN connection has the "Scan HTTP" option activated. If the option is…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • hotspot missing interface

    BENOITLORAND
    BENOITLORAND
    Hello everybody, I'm trying to set up an hostpot on my customer's UTM. But in add hostpot wizard, the interface i want to find (Port1.150) is missing. I don't understand as this one is similar to other (zone type, static ip, ... )
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • Possibility to have WAN Group for load balancing Web surfing

    BENOITLORAND
    BENOITLORAND
    Many of my customer have multiple diffrent WAN links (2x ADSL, 1x SDSL). I want to load balancing over Adsl connexions. But not on SDSL who is use to established remote or site-to-site VPN, DNAT, ... I think it would be possible if WAN Interface could…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • Possibility to change Primary Gateway in Hotspot

    BENOITLORAND
    BENOITLORAND
    My customer have a Wan link to comunnicate with another site and another one dedicated for Wireless Users. In hotpost settings, i can't select any Primary Gateway, so i set it in firewall policy but when i change hotspot settings, i could do it again…
    • over 8 years ago
    • Sophos Firewall
    • Discussions
  • How to create port forwarding on Sophos XG 16?

    tomukasteris
    tomukasteris
    Hello, I am struggling to make port forwarding on new Sophos XG 16. On previous version it used to under Business Application Policy, application template Non-HTTP Based Policy but now I am not sure which one to choose WAF or DNAT/Full NAT/Load Balancing…
    • Answered
    • over 8 years ago
    • Sophos Firewall
    • Discussions
<>