Did Sophos already release a fix for these CVEs? CVE-2015-5600, CVE-2015-6563, CVE-2015-6564 CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-8858. These are considered vulnerability and what was advised to us is to perform…

I have had and recently had an issue where after I changed the password on WebAdmin for UTM, I would not be able to ssh in but the passwords would work in console. I recently had the same issue and I simply upgraded the UTM from 9.509 to 9.510 and resolved…

Hi guys, I am fairly new with UTM and there was an issue(their log files are 100%) with one of our clients which was resolved by a Sophos Support. Here is what she said she did (yes the support is a female). >Found out that the packetfilter and…

While the official Sophos article does a reasonable job of explaining the overall process of setting up SSH / Shell access using a RSA key pair, there are a number of additional details which are not obvious, yet must be correct to in order to successfully…

Hello, For some reason, I am not able to SSH into the UTM with the root password. It always says "wrong password". What exactly am I missing here? Thanks!

Hi guys, I'm new to UTMs. I have 2x UTM nodes configured in HA active/standby mode. Both UTMs are hosted in vCenter and I can console into both nodes using the same crendentials of username"loginuser". However, the problem is: ssh as "loginuser…

Hi all, a few days ago, I had to find out the Webinterface Port of a XG Firewall. I only had Console and SSH access (advanced shell) and the Webinterfaceport was changed by someone else to a unknown Port. I tried that, what I would do on a utm (netstat…

Hey guys, I need a tip for my plans. I would like to shut down the firewall for a backup process via SSH on a ESXi. But after the SSH login, the prompt comes with the selection menu (Main Menu 1. Network Configuration 2. System Configuration...). How…

Hello guys, I´d like to setup SSH access with SSH key to my Sophos UTM (Home Lab) I´ve generated SSH 2 RSA 2048 key and pasted it´s public part into Authorized keys for root. After I click apply I´m getting this error :/ What am I doing wrong…

I do have CLI access, and due to exteriencing this repeatedly in the past, was testing this on a brand new VM build to prove I'm not just crazy. This SERIOUSLY looks like bad documentation or a bug. In any event, the guide from here: https://community…

Experiencing an odd problem when trying to access XG through SSH from the LAN. When I try to login, I get "Access Denied". In the logs, it says "User 'bob' failed to login from 'IP ADDRESS' using ssh because of wrong credentials". I'm using the exact…

Hallo zusammen, ich möchte meine letsencrypt Zertifikate automatisiert in meine UTM 9 einspielen. Dazu brauch ich cc. Wenn ich mich per ssh auf die UTM schalte und >sudo cc eingebe krieg ich einen cc: command not found Hab ich was vergessen…

Hello. I have a shite connection at home and need to upload LSP to my VPS, but currently the only way to do this is by uploading it via FTP which simply isn't possible on my connection. Is there a way to directly download the file via ssh/wget for CentOS…

Hi all, I'm trying to setup an SSH bookmark to log me into the CLI of my Cisco SG300 switch by providing the username and password. When I launch the bookmark, it starts to establish the session and then I get a popup with the following: "No RSA host…

Hello, We know that admin password for SSO link is visible clearly in HTTP printable configuration and SSH view. We know how to hide it in http printable configuration but it's still visible in SSH view. How can we hide the admin password in SSH…

I'm getting a bunch of failed login attempts across multiple devices from a single IP address. I know there is way to limit the SSH and WebAdmin access to certain networks. I have added a firewall rule that drops packets from that IP but I'm still…

hallo zusammen, irgendwie stehe ich auf dem Schlauch. bei der sophos kommt das ja mal vor. ich versuche derzeit einen netzwerkverkehr zu verfolgen. eigentlich geht es um die frage, ob die firewall den traffic irgendwie blockt, oder ob alle freigaben…

Hello, Somehow I un-checked both authentication methods - "allow password authentication" and "allow public key authentication", and saved, then disabled shell/SSH Now, I cannot re-enable SSH access (it will say "all authentication methods are disabled…

Hello, I'm trying to connect to the firewall via putty but getting an error: Network error: software caused connection abort shell access is allowed:

Do not do this if you don't feel comfortable messing up your UTM. I'm pretty shure this voids the warranty. But my UTM is pretty useless using a MTU of 576 from my ISP. The 9.405-5 upgrade introduces a mandatory, non disable, usage of the MTU provided…

My SSH access no-longer functions. I am using plink\putty and I get FATAL ERROR: Network error: Software caused connection abort. According to Putty website this is a generic error. And indeed it seems to be because I get it from any machine on the LAN…

Hey, I've setuped the STAS on my DCs. User are Reported... works fine. I have a firewall rule to allow "ssh" and "ping" to one special host. (source is "USER A" and "TESTUSER B") The first workstation wich comes online, after the UTM restarts, with…

Sophos has recently updated the documentation for 9.4 (and this applies to prior versions as well) and it now includes the following (underline added, for emphasis): Note – Any modifications done by root will void your support. Even users not logged…

I tried setting up sophos today in a test environment to see how much throughput I could get, but I couldn't get far. My core network is on a 10. subnet and I setup a computer and assigned it with 192.168.2.20 subnet IP. Sophos was the router between…

Hi! I'm trying to figure out why XG installation refuses LAN clients to make RDP or SSH connection to WAN servers. Whenever I try such a connection, the packet sniffer first logs a correct connection request (dest. port 3389, for example) originating…