Hello. I have 2 sites with 2 ISP each other: Site 1 (ISP A, ISP B), Site 2 (ISP X, ISP Y). So I think to config 4 tunnels like we did with Site-to-Site IPsec VPN: Tunnel A-X, Tunnel A-Y, Tunnel B-X, Tunnel B-Y. Site 1 publish this networks (192…

Dear Team, We configured rules for destination zone to source zone and vice versa for both vlans. But doesn't worked. The same configuration was working with 17.0.5

I have 2 firewalls. Firewall A is a XG and Firewall B is an SG A ---- B IPSEC Tunnel On A x.x.x.x/24 can ping on B x.x.x.x/24 and vice versa However on the A side if you browse to the webpage of that device such as a esxi host or synology…

Hi folks. Im a learning Technician in Sophos XG and i need help with this request. Acctually we have a Sophos XG FW 18.0.1 and we have a software provider where we access a particular software in one server. The service provider has allowed the traffic…

Hello all, We are in a migration process to a new LAN installed, on our building, moving from a Ubiquiti Unifi Network, to a FULL HPE Aruba Network. For now we would like the old equipments, to contact the new equipments on the NEW LAN, before we…

Hi to all Sophos Experts! I would like to share my experience with my SOPHOS XG86 Firewall. I tried to create a new firewall policy after updating the firmware to v18. I did some test and I encountered a weird issue with routing wherein when I selected…

We notice a strange routing decision of the XG to networks not routed by the XG itself. This traffic is forwarded to an IP address I cannot find any routes to. Also the XG does not even have an IP address in the network range of that IP address. If…

Dear, I'm evalutaing Sophos XG Home in Bridge mode. This is on a virtual appliance. I have experience with Pfsense, Palo Alto, Fortinet and Untangle firewalls. My home network has a pair of Cisco ISR G2 (3925E) routers in HSRP, each connected…

Can someone please help me! I have been having issues lately with my Sophos XG 330 rev.2 Firewall. First off I have had a complete system crash where I had to completely re-install firmware (the system reboots to "fail safe mode") Next I keep randomly…

We have 3 lines Line A: - has a fixed public Ip - is needed for authentication with MS services (Exchange365 and others). Certain requests to MS have to be initiated over this fixed Ip - is part of a VPN - has the lowest bandwidth Line B and C - have…

Im using XG Xtream SFOS 18.0.4 MR-4.I've successfully configured site-to-site IPsec tunnel. Im able to ping other no issue. Now i want to know how i can route specific websites over the tunnel to other point. Like facebook, Google and Instagram traffic…

Hi, I am running IP-sec s2s vpn between branch(Sophos- CR25ING, XG v17.5 ) to HQ (Palo Alto-5220), vpn established and working fine. for better security and filter, we need all traffic should be routed through HQ, how can we achieve this? I have…

Hello Everyone. I hope you can help in providing internet access to my network on my new SOPHOS XG86W. Currently it cannot reach the registration server to sync its registration and any clients connected to the LAN or WiFi can ping external addresses…

Hi may I know once I set up the XG 430 HA and how to connect to the redundant core switch (Stacking Netgear) , thank you. etc: create 2 lan ports and assign IP to each core switch?

Hello Forum! I have a little challenge here. TLTR: Translating WAN IPv6 to LAN IPv4. I would like to make various services accessible via IPv4 and IPv6 from the WAN side. Internally in the LAN and DMZ I would like to continue working only with IPv4…

Hi Guys, I'm starting to learn Sophos XG and stumble upon this two images below. I would appreciate if someone help me visualize the said pictures since I'm having a hard time understanding it a (a high level diagram maybe?). Also I'm a little bit confuse…

Hi Guys Hoping someone can help me as I'm struggling a bit with V18 and the decoupling of NAT rules. I know it works as its working on V17 without issue. We have a vlan and within that vlan there is a device which requires WAN access. I have created…

Good day! I am having to setup a new network for an IP based phone system our organization does not control. The system needs to work over the IPSec tunnel between two sites running Sophos XGs. Because we don't have access control over the system, we…

Hello all, This is my WAN link configuration: The main interface has no IP address. but I created a VLAN on WAN interface and also add 2 alias valid IP address. I created 2 NAT policies for rules. all rules working fine and users have access to…

Hi, I'm having an issue at a location with a new XG firewall that I'm wondering if anyone has run into... The firewall is behind a cable modem, with a web server plugged into the modem. The web server has a static IP assigned. Let's call this x.x…

We have a DMZ subnet off of our XG 550. When our internet connection goes down, internal clients cannot get to the web servers located on that DMZ. If you do a tracert, it is attempting to send the traffic out the other internet connection and get to…

Hi everyone, I know the question may not be clear but here it is. I have managed to get connectivity between the branch and HQ. I can ping and access devices on both sides. The issue is, when VLAN551, which is the data vlan, is on WAN, the cisco…

Hello Sophos Community, i am experiencing the following problem: I am trying to configure the firewall in a way that it forwards a lot of requests unfiltered to two CMTS devices unfiltered via static routing. The CMTS devices are directly connected…

SSL VPN issue Hello!! I have actualy a problem, I configured a À SSL VPN. My all setting is perfectly configurate. But when I test in my PC I can't connecte. If I test in my Samsung Note10 + with OpenVPN the connection is successfully but no internet…

Hi everyone, I recently switched over to XG Firewall from pfSense, thus kindly excuse my insufficient knowledge. For a testing setup I have virtualized XG on ESXi. My plan is to connect using a SSL VPN session to the manage zone, which is the only one…