Hi Sophos Geeks!
I'm having a problem accessing my WEB Application using Public IP in my local network but working if I'm accessing it externally.
I already configured the DNAT policy Source zone in Any Zone but still no lock. Currently my version…
Hi there,
since some days, we encounter Bruteforce-Attacks against our Mainfirewall (Sophos XGS):
Access from IP address '92.53.xxx.xxx' is blocked for '30' minutes after '5' unsuccessful login attempts
I've tried to block all requests from…
Hi Sophos Community
After a lot of trial and error I'm hoping you can help me finding a solution to my scenario:
In my home setup I have my wan-interface of the sophos in a transit network. My ISP router forwards any traffic to the sophos. Now…
Hello, we also have 2 DVR devices in our network. I can access it via HTTP (Web). I cannot reach the second device. It seems like it is going to log in to the second DVR device, but it doesn't. It gives ERR_CONNECTION_REFUSED error. I tried many things…
Hi everyone, I have some problems with the STAS service. The picture shows the topology:
I have two locations, the HQ with an XG210, and the branch with XGS136. Both are connected through a VPN tunnel. The STAS server is in HQ location. The communication…
For firewall rules that allows access to a sensitive system (host) and where access is usually not required all the time, it would be nice to have a feature to enable them manually when needed but with a timer that disables the rule after 60 minutes or…
Hello everybody,
Just new to the forum so please be gentle.
I have 2 WAN's on Port 3 and port 6
What I wanted to do is put the guest and staff wifi to use the connection on Port 6 instead of the main connection on port 3
I made firewalling…
Hello,
I would like to create a DNAT and PAT rule for a customer. However, this doesn't quite work the way I want it to. When saving, I always get the message ‘Original and translated services do not match’.
Normally I would also like to use port…
Hello there,
I have been searching long time to do the following with Sophos XG 230 Firewall. But still could not find solution. Can anybody help
1. Block Microsoft 365 One Note alone. Rest of the Microsoft 365 should work. Blocking One Note on Application…
I have been having an issue where my smart tv hangs when apps first start up. It hangs for...several minutes sometimes. Checking my firewall logs, this is the reason, and after the several minute hang, everything works, which makes sense since it's now…
I have an XG330 running 20.0.2. I'm trying to configure BFD+BGP. The BGP portion works great. However, the BFD portion does not. I enabled BFD from the CLI. The following is what my BGP configuration looks like from the CLI:
Current configuration:
…
.Hello @all!
So I have asked in the past a few questions about QoS, but I had a more complicated setup with two WANs and additionally the second was a bonding between an ADSL line and a 4G+ sim card, which was nor really steady regarding the bandwidth…
Hi,
what would be the proper way to configure different WAN ALIASES for outbound traffic, for example in this manner:
LAN users would use WAN Alias 1 for browsing and accessing web
LAN2 users would use WAN Alias 2
FreeWiFi users would use WAN…
Hello,
We've seen a message on the Sophos Firewall WEB-UI leading us to this article:
"Multiple failed login (brute force) attempts for WAN-facing portals on Sophos Firewall"
https://support.sophos.com/support/s/article/KBA-000009932?language=en_US…
Hi,
On brand new XGS-136 I have problem, which cannot solve for few days. So I would appreciate any hints.
Packets are dropping randomly every minute or so, sometimes even more frequently, in the following direction:
From LAN side --> to Sophos…
Hi Folks,
I'm moving from UTM to SFOS. Getting it setup with the basics was all fine but something I've been wanting to try for a while was to remove the masq rules as sophos is my back firewall in a back to back config. I ran into an issue though…
Looking at IP Hosts like #Port2 or ##ALL_RW, they are dynamic IP addresses, correct? So if Port2 is my WAN port and the ISP changes my IP (via DHCP), wherever #Port2 is used in any rule will automatically be updated instantly so that the rule still applies…
Hello,
Over the holiday weekend we upgraded our XG330's from 19.5.4 to 20.0.2 MR-2-Build378. After the upgrade none of our wildcard FQDN rules are resolving/working. They worked perfectly fine prior. This is causing quite a bit of issues for user authentication…
Hallo zusammen,
seit Donnerstag bekomme ich ständig die Warnung mit folgender Nachricht:
Message: Access from IP address '92.53.65.166' is blocked for '5' minutes after '5' unsuccessful login attempt.
Unsere Firewall ist
Alert for XGS2100…
On September 4, our Firewall VPN Portal was attacked from IP 92.53.65.166 (Russia) with hundreds of login attempts for different usernames. After bloicking this, today (September 8) we have been hammered by another attack, this time from hundreds of different…
Since today we have been experiencing massive password spraying attacks on many Sophos firewalls, especially on the VPN portal, which listens to port 443. Apparently these are attacks from Russia with the IP 92.53.65.166. How can I create a rule to prevent…
Hello:
I have a WAN port (Port 2) that is connected to our ISP with an IP block of 65.170.xxx.xxx/29. We have another block of IP addresses from the same provider at 63.162.xxx.xxx/29. Both come in thru the same ISP router (Cisco 4300). There are 4…