I am looking for assistance with IPSEC VPN authentication for On Prem Active Directory & Azure Entra
I have two use cases. Both involve the Sophos Connect Client and XG firewall v19.5 or later:
1. XG firewall appliance on premise with a MS Windows…
Dear Friends:
I’ve been following this article because none of my reports were working.
Sophos Firewall: No reports show
After flushing the reports, it appears as though I never completed the configuration of my WAF certificates.
So, I decided…
Hi all.
I have been trying to install sophos xg home on my router and I cannot get past the firmware install. The install fails on "installing firmware64298 blocks cat: can't open /etc/versions: no such file or directoy this appliance does not satisfy…
In XG SFOS 19.5+ is there a way to revert to the previous version of RED or AP firmware after applying updates manually from the Pattern updates page?
Does each SFOS version have minimum RED & AP firmware version requirements?
Hi all,
sophos XGS3300 with SFPS 19.5.
In my internal network I want to decommission an old Windows Domain Controller.
That DC still logs multiple DNS requests from the Sophos (Azure Cloud and other requests) per Minute.
I removed that DC as Authentication…
I have a Sophos Firewall XG115 with Firmware revision 19.5
I am trying to open ports associated with a LAN Host , using DNAT assistant. There is a range of ports to be opened ports 40,000 to 60,000.
I have created a service with ports 1:65535 mapped…
We have a main HA firewall XG210 pair, currently in 19.0 latest MR release, connecting to various XG and XGS units in the field.
We have dedicated links to the far end locations, and on the XG210 at the head office it is configured as being over LAN…
Hi everyone,
We have a cloud Sophos 19.5 appliance with a public IP. We use it to setup a site to site SSL VPN to another Sophos 19.5 with is located behind a 3rd party firewall.
For some reason, the VPN behaviour is erratic. It could work for few…
Sophos XGS 107 19.0.5
Derzeit nur Zugriff via User-VPN, kein Zugriff auf Firewall GUI.
SSH auf internen Client möglich, von intern via SSH auf Firewall ebenfalls möglich. (Kein interner Client mit grafischer Oberfläche bzw. Browser vorhanden.)
Kann…
Hey Folks,
I have a problem and actually dont know how to fix it.
I have setuped a new Sophos XG 19.5.X, configured everything I want to but now I see that i am able to access ssh and adminportal from external network and that should not be possible…
Hallo zusammen,
wir haben nun von UTM auf XGS migriert. An für sich eine tolle Sache wäre da nicht der erhöhte Konfigurationsaufwand.
Bei der UTM konnte ich über die "Multipath Rules" je nach Verwendungszweck eigen Ip´s pro Netz festlegen.
Irgendwie…
Hi, I have Sophos XG on ver 19.5. I noticed that when my device is on mobile data which has IPv6 and IPv4 of 172.56.x.x, the VPN won't connect. There are also no logs on the firewall so it was never reached to it. I do not have IPv6 rules and SSLVPN setting…
Hi,
we are using the IPsec Remote Access as our home office solution. We have 2 ISP-connections connected to 2 seperate inferfaces on our Sophos XGS 3100 . Once i configured the IPsec profile and policy I stuttered that there is no option to select…
Hi all,
I got the following error when I tried to configure GRE tunnel on my Sophos FW (v19.5, home).
console> system gre tunnel add name GRE1 local-gw Port1 % Error: Unknown Parameter 'Port1'
The WAN port I am trying to configure GRE is Port1,…
Hi all,
SFOS 19.5
Just got a problem with WAF and RDG 2019, i can't log to my server and i have this error:
/rpc/rpcproxy.dll
WAF Anomaly
Inbound Anomaly Score Exceeded (Total Score: 13)
Hope i will find…
hello everyone,
i have HQ and Branch Connected with Red - 20 and firewall XG 19.5, i have two internet connection, i made a rule to make the branch to take internet from the HQ to set Web filter, but the internet was too slow in the Branch so every…
Hi
At some point Ubisoft Connect stopped working, and have tried anything I can think of as it works fine if I bypassed the firewall by using a mobile connection.
Tried adding URL to the exception list so it shouldn't be scanned, and added the URL…
Is this information still accurate?
Dynamic DNS - NameCheap
It doesn’t seem to work for me on v19.5
also, is there a way to trigger the DDNS update (maybe through CLI) so I can test multiple settings while I get the right one?
Thanks!
I have a new install of v19.5 on my own hardware (protectli vault), switched from pfsense this week. The firewall is performing very well with one exception. I configured a "country block" rule and blackhole NAT at the top of the rules. But once I do…
How to export Users List from firewall. In earlier version we have to export list but in new version 19.5 its not available. so could you please help me anyone with detailed steps how to export Users list in authentication.
Hi all,
I rarely work with Sophos Firewalls and haven't ever had to do much on them before, but having recently logged in to one I found that on the 'Control Centre' page that 'Interfaces' is highlighted orange.
When I then select 'Interfaces' it…
Servus zusammen!
Funktioniert der Mail Scan per Legacy in der 19.5 Home noch?
Hab die gleiche Konstellation wie hier:
Einrichtung IMAP/POP EMail Scans
Ausser das mein Mailclient Thunderbird ist und ich bei GMX abrufe.
Aber ich bekomms beim…
Hi,
One of our customers facing a weird problem, when they access their official website (Hosted in the AWS) through the firewall one specific image set is shown as a corrupted image. But when we access the website using a dongle or router, photos are…
hi all,
we encountered some limitation with sophos fw, under SFOS 19.5 with IPSEC configuration.
There is no possibility to set null encryption under ipsec phase 2 part.
Is there a way to bypass this limitation ?