• SSLVPN without Public IP

    Alhussain Toys
    Alhussain Toys
    Dears I am currently trying to set up SSL VPN on my SophosXG125 firewall, but I am encountering difficulties connecting without a public IP address. Could you please confirm if it is possible to use SSL VPN without a public IP? If so, I would appreciate…
    • 17 hours ago
    • Sophos Firewall
    • Discussions
  • 20.0.0 GA to 20.0.2 MR2 378 - Sophos Connect - SSL VPN - AD Groups not added on authentication

    Fred_B
    Fred_B
    After the XG 210 upgrade to SFOS 20.0.2 MR2 build 378 we now have the issue that firewall rules for AD Group VPN Users no longer work for some SSL VPN users belonging to the AD VPN Users group. We know that IPSEC doesn’t work with AD groups but SSL VPN…
    • 2 days ago
    • Sophos Firewall
    • Discussions
  • Issue with SSL VPN Configuration , Sophos Connect client

    Alhussain Toys
    Alhussain Toys
    Hello Dear , I am experiencing an issue while attempting to set up the SSL VPN. When I download the Sophos Connect client from the user portal, the VPN option does not appear in the dropdown menu, preventing me from downloading the Sophos Connect client…
    • Answered
    • 2 days ago
    • Sophos Firewall
    • Discussions
  • Sophos Ipsec Fail over VPN

    Finn Rückemann
    Finn Rückemann
    Hello, we have a customer with IPsec connections. We tried to make the tunnel use a failover group. These are created on the initiator firewalls. If we manually connect the tunnels, they all connect, and traffic is also flowing through them. Sadly…
    • 3 days ago
    • Sophos Firewall
    • Discussions
  • Migration from XG430 to XGS4500

    gerardo josic rodriguez paredes
    gerardo josic rodriguez paredes
    Hello Team, I am explaining my case to you in order to receive the best advice from you as Sophos experts. I have my Sophos XG430 SFOS 20.0.0 GA Build 222 in production as a perimeter firewall (I only use 2 WAN ports and 1 LAN), this equipment allows…
    • 4 days ago
    • Sophos Firewall
    • Discussions
  • LTE-VPN-Verbindungsprobleme zu Citrix servern über SSL-VPN

    Net-Admin-KZV
    Net-Admin-KZV
    Hallo Zusammen, wir haben ein etwas größeres Problem mit dem SSL-VPN, aber fangen wir mal vorn an. Alles hat damit angefangen, das unsere Geschäftsführung gerne mit ihren IPads von Unterwegs mit ihrer Telekom LTE Karte auf unsere interne Citrix-Umgebung…
    • 5 days ago
    • Sophos Firewall
    • German Forum
  • Zeitliche Einschränkung

    andra2
    andra2
    Hallo, gibt es unter der Sophos XGS 2100 eine einfache Möglichkeit den SSL VPN für bestimmte extern User zeitlich einzuschränken? z.B. nur Werktags von 7:00 Uhr bis 19:00 Uhr?
    • 6 days ago
    • Sophos Firewall
    • German Forum
  • SFTP Clientless Not working at all

    Reem Jalal Eddine
    Reem Jalal Eddine
    Hi, I am giving up on this, I have opened a case with sophos but cannot figure out the issue. I have created a clientless VPN sftp for our server. It always gives me read: Connection reset by peer It works perfectly fine with Winscp using the…
    • 10 days ago
    • Sophos Firewall
    • Discussions
  • Route all traffic via IPSec

    Dragos Avram
    Dragos Avram
    Hi all. site A. port 1. Lan. 10.10.10.0/24 port2. Wan. 84.153.x.x/32 Site B port1 .Lan 10.10.20.0/24 port2. Wan 63.84.x.x IPsec between sites. all resources are accessible from one site to another. I want all traffic from site…
    • 10 days ago
    • Sophos Firewall
    • Discussions
  • Kommunikation über 2 Site-To-Site Verbindungen

    Auggiman
    Auggiman
    Hallo zusammen, leider bin ich mit meinem Latein am Ende. Die Infrastruktur sieht wie folgt aus: Standort A: UTM 9 Site-To-Site, Initiert, Striktes Rouing Lokale Netzwerke: LAN 1: 10.0.0.0/24 LAN 2: 10.1.0.0/24 Remote Netzwerke: …
    • Answered
    • 13 days ago
    • Sophos Firewall
    • German Forum
  • Sophos XGS87 hinter FritzBox Side to Side VPN

    MRXLENN
    MRXLENN
    Hallo Zusammen, ich habe 2 Standorte welche miteinander „verbunden“ werden müssen. Dies möchte ich über einen IPSEC Tunnel bereitstellen. Beide XGS87 sind jeweils hinter einer FritzBox als Exposed Host. Leider bekomme ich eine side to side connection…
    • 16 days ago
    • Sophos Firewall
    • German Forum
  • when will IKEv2 come for remote access?

    LHerzog
    LHerzog
    When will SFOS support IKEv2 for Remote Access? I was expecting a technical problem when I tried to enable IPSec RA and it did not allow me to select the default profile. I could not believe, this is not supported on a modern firewall. Vivek Jagad…
    • 17 days ago
    • Sophos Firewall
    • Discussions
  • IPSEC ISSUE || PHASE 2 NOT UP

    SatyabrataB
    SatyabrataB
    Hi, we are trying to configure IPsec tunnel between Sophos and Cisco ASA all configuration phase 1 and phase 2 are matches both sites. phase 1 is up but phase 2 is down i have checked logs below error message we are getting. 2024-12-05 13:15:08Z…
    • Answered
    • 18 days ago
    • Sophos Firewall
    • Discussions
  • Sophos Red 60 Reset

    Suhaib Yousef
    Suhaib Yousef
    How can I factory reset my sophos red 60 manually using the reset button at the back. Also, is there a way we can access the red device through console or ssh?
    • 18 days ago
    • Sophos Firewall
    • Discussions
  • Route Site-to-site traffic from (Remote Office A) through (Remote Office B) to Head Office

    Werner Smit
    Werner Smit
    Good Day, We have 2 remote offices with a site-to-site link connecting to Head office. Network config for offices: Head office: 10.x.x.x/16 Remote Office A: 172.16.x.x/16 Remote Office B: 172.17.x.x /17 Have fail-over links connecting both…
    • Answered
    • 18 days ago
    • Sophos Firewall
    • Discussions
  • IPSec VPN - Branch1 to Branch2 connectivity via HQ

    Gary McDonald
    Gary McDonald
    Hello All, I have 2 branch offices and one HQ office. I would like branch 1 to be able to communicate with branch 2 VIA the Sophos XGS appliance in the HQ. Can any body give me any pointers for the best way to achieve this. I know I could connect…
    • 19 days ago
    • Sophos Firewall
    • Discussions
  • FAILURE MULTIPLE GATEWAYS FAILOVER

    dan ghenea
    dan ghenea
    Very good to all!!! Objective: It is needed that the “SSL VPN” connections of the clients, are allowed to connect through “Sophos Connect” through the main_gateway, and in case of failure of this, they can connect through the backup_gateway. Case…
    • 19 days ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS SNAT IPSEC LAN2LAN VPN

    OTWolf
    OTWolf
    Hi, ich hatte eine SG230 und hier einen VPN IPSEC Tunnel zum Kunden. Hier wurde gewünscht, dass unsere Daten nur von einer IP Adresse gesendet werden. Somit hatte ich hier einen SNAT hinterlegt. Die Kollegen haben sich mit einem Service-User per SSL…
    • 19 days ago
    • Sophos Firewall
    • German Forum
  • Sophos Connect compatible with Snapdragon X?

    i-am-andrew
    i-am-andrew
    Hi, My employer uses Sophos Connect VPN. I currently use an Intel PC but am looking at changing to an ARM Snapdragon X PC. However I'm not sure whether Sophos Connect is compatible with Snapdragon X. Sophos "Supported platforms" on this support page…
    • 21 days ago
    • Sophos Firewall
    • Discussions
  • ipsec cipher zum schutz vor quanten computern

    piddae
    piddae
    Hallo liebe Gemeinde, habt Ihr eine Idee wie wir z.B. unsere IPsecs wirkungsvoll gegen die Angriffe von Quantencomputern schützen können? Was ist da die Best Practice auch im Bezug auf den Zeitraum für einen Schlüssel Tausch, welche Cipher welche…
    • 23 days ago
    • Sophos Firewall
    • German Forum
  • IPSec not trusting self signed Root CA

    Marian Arlt
    Marian Arlt
    I created a certificate based IPSec/IKEv2 Site-to-Site-VPN using the Sophos guides between two Sophos SG135 firewalls. One firewall runs on home edition (SFVH with firmware SFOS 21.0.0 GA-Build169 ) one runs on trial (SG135 with firmware SFOS 20.0.2 MR…
    • 22 days ago
    • Sophos Firewall
    • Discussions
  • Heartbeat over RED connection

    balletbob
    balletbob
    Hi, What's the recommended configuration for clients behind a RED? We have the the RED in SPLIT tunnel mode and have the Sophos Heartbeat IP included in the traffic sent over the tunnel. Is this right? We also have a Firewall rule for traffic to…
    • 26 days ago
    • Sophos Firewall
    • Discussions
  • SSL VPN Network Access

    SophosNewby
    SophosNewby
    I'm a pulling my hair trying to figure out why our SSL VPN users all of a sudden cannot access the network resources. For the most part I moved 99% of our users over to IPsec VPN setups but in some cases, like accessing from China, IPsec does not allow…
    • Answered
    • 28 days ago
    • Sophos Firewall
    • Discussions
  • Can I create VPN site2site tunnel from XGS as client out to OpenVPN server?

    Andrej Pirman
    Andrej Pirman
    Hi, I cannot find instructions on how, if possible at all, create Site2Site VPN tunnel, from Sophos XGS outbount to OpenVPN server. This is for IP phone service, I created one LAN port for local phones, MASQ via WAN interface....and now I nned to create…
    • Answered
    • 28 days ago
    • Sophos Firewall
    • Discussions
  • VPN (SSL/IPSec) Nutzer Zugriff aus fremdem Land

    SylvainL
    SylvainL
    Hallo Zusammen, ich würde gerne bei mir folgendes bauen: Nur bestimmte Nutzer aus einem Ausland sollen per VPN eine SSL/IPsec Verbindung zu meinem lokalen Netzwerk aufbauen. Leider konnte ich bis jetzt mit einer Countryblocker-Firewallregel…
    • 28 days ago
    • Sophos Firewall
    • German Forum
>