Hallo Kollegen, Seit Jahren nutzt die Zweigstelle eines Kunden die Sophos UTM in der Zentrale als Internet Proxy. Das funktioniert(e) auch immer einwandfrei (UTM der Zweigstelle im Browser als Proxy angeben und gut is). Die Zweigstelle ist, unabhaengig…

Hi, Two locations are connected with MPLS. Both locations have Sophos devices. In both locations, the servers and PCs behind sophos can ping each other and access each other. However, when we ping or trace the same ip addresses in the diagnostics…

Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment. ______________________________________________________________________________________________________________________________________…

I have sophos xg210 , i want to terminate my mpls link to it , my link is an mpls , but the source of mpls cannot ping my computer but i can ping his computer , what could be the issue?

We have a location where we have Sophos XG106 Firewall serving as Gateway. We have one MPLS link on the location. We are facing issue when we shift / redirect traffic on MPLS link to connect to HO. Static routes are working fine. We are able to reach…

Disclaimer : This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment. Table of Contents Overview Product and Environment…

After connecting a branch office with MPLS VPN ... The devices at the site are showing internet access, but we can't browse .. if we ping 8.8.8.8 it's going through At the HO office, we have two ISP. the main link and the backup link. The MPLS VPN link…

Hi, we have a client, We created a VLAN on a MPLS VPN for a site branch to access the internet from the head office. We have two branches connected under the same VLAN ID. the other one is working successfully, but the other branch is connected but…

I have my MPLS Link termintaed on port no. 4 of sophos XG Firewall. When i put the MPLS Line on my laptop and assign static IP Configuration ISP has given to me. i am able to ping the Gateway of MPLS . but when i try to configure it on sophos firewall…

Hello We would like to set up mpls as backup for ipsec according to sophos when we establish ipsec and mpls static route the ipsec is the primary because it has the highest precedence In our case we established ipsec and it didn't work unless we added…

Hello All, Need help with Failover - I've a XG106 with MPLS Terminated on it and ILL. IPSec Tunnel is formed between HO and this XG106. I want to achieve Failover of Connectivity to HO on IPSec Tunnel in event of MPLS down, using SD-WAN. Tried seaching…

Hi everyone, Maybe I'm doing something wrong but I can not have all my offices browse each other on MPLS connection... First of all each office has a connection, managed externally by one ISP, with its own router and each is part of a big MPLS. On…

HI All Right now we implement MPLS with VPN as backup base on KB-000035833 document. Our MPLS connect with multiple site also VPN Tunnel connect to multiple tunnel to backup MPLS. As per document we need to add system link_failover add primarylink…

Am using single interface i,e port8 of XGS 2100 for MPLS & Internet bandwidth. Both are configured on separate VLAN as WAN zone. MPLS - 172.31.173.242/255.255.255.248 Port 51 IBW - 172.27.46.10/255.255.255.252 Port 201 I have natted IBW through…

Hi all, We recently switched from a UTM software install to a pair of XG3100s running in HA active/passive. Since the switch over we have had an issue with clients at our branch offices communicating with servers and devices on our LAN. Network…

I'm working with a client that has MPLS, a Cisco router and a Sophos XG. They plan to get rid of the MPLS at some point but for now it has to work. Site B got a Sophos XG firewall and we can get MPLS working using SD-WAN Routing and LAN devices (SiteB…

Hi, I try to be clearer as possible hoping this precious community can give me a solution to the problem. SITE A Zone LAN | 172.16.1.0/24 Zone LAN Gateway | 172.16.1.254 -> Firewall XG230 Zone WAN -> Internet Zone MPLS [LAN] | 10.10.11.0…

I followed the KB-000035833 ( https://support.sophos.com/support/s/article/KB-000035833?language=en_US ) and setup 2 out of the 5 sites successfully. When trying to setup the 3rd site, I am now getting a failed response after running the system link_failover…

lferrara can you or any one else check this out. This case is to understand how you could use an environment with one XG310 main office and 16 XG86 remote offices. We would like to use the functionality of RED SERVER (Head Office = HQ) and RED CLIENT…

Hi everyone, I'm trying to do something new to me, and I'm loosing in it... I'm trying Windows Virtual Desktop so with a partner have configured vpn site-to-site from my main office to Azure. It's works as aspected, I can ping from my local network…

Good Evening, I have a Sophos XG 210 firewall on my network. ISP has a single router both for Internet and MPLS as below. There is only one cable from router to firewall carrying both MPLS and internet traffic. All routing to branches done on…

Hi All, I am having trouble getting my MPLS to working between 2 Sophos firewalls. Here is my topology: I have tried putting routes in place etc.. but cannot get it to work and just getting confused now. Is anyone able to confirm what I need to…

Hi everyone, I know the question may not be clear but here it is. I have managed to get connectivity between the branch and HQ. I can ping and access devices on both sides. The issue is, when VLAN551, which is the data vlan, is on WAN, the cisco…

Hi, does change "system route_precedence set static" is mandatory for VPN link as a backup for MPLS link configuration in KB https://support.sophos.com/support/s/article/KB-000035833?language=en_US#VPN-Link-as-a-Backup-for-MPLS-Link ? would it still…

Please bear with me on the explanation. We recently implemented MPLS on our network and were given the VLAN1 for the internet and VLAN2 for data. I set this up under Network-> Port 2 then VLAN1 - WAN, VLAN2 - LAN. Here is the issue. If setup as above…