• facing site-to-site tunnel issues with third-party firewall.

    Kiran Jedhe
    Kiran Jedhe
    Hi, We have total three site to site tunnels. But facing issue only one tunnel that is every morning need to reset that tunnel from any one side. I have raised a ticket but no solution. facing issue after upgrade into V21.
    • 3 hours ago
    • Sophos Firewall
    • Discussions
  • Sophos Ipsec Fail over VPN

    Finn Rückemann
    Finn Rückemann
    Hello, we have a customer with IPsec connections. We tried to make the tunnel use a failover group. These are created on the initiator firewalls. If we manually connect the tunnels, they all connect, and traffic is also flowing through them. Sadly…
    • 3 days ago
    • Sophos Firewall
    • Discussions
  • Route all traffic via IPSec

    Dragos Avram
    Dragos Avram
    Hi all. site A. port 1. Lan. 10.10.10.0/24 port2. Wan. 84.153.x.x/32 Site B port1 .Lan 10.10.20.0/24 port2. Wan 63.84.x.x IPsec between sites. all resources are accessible from one site to another. I want all traffic from site…
    • 10 days ago
    • Sophos Firewall
    • Discussions
  • Kommunikation über 2 Site-To-Site Verbindungen

    Auggiman
    Auggiman
    Hallo zusammen, leider bin ich mit meinem Latein am Ende. Die Infrastruktur sieht wie folgt aus: Standort A: UTM 9 Site-To-Site, Initiert, Striktes Rouing Lokale Netzwerke: LAN 1: 10.0.0.0/24 LAN 2: 10.1.0.0/24 Remote Netzwerke: …
    • Answered
    • 13 days ago
    • Sophos Firewall
    • German Forum
  • DNS over Site-to-Site-VPN V21

    Wotan Wien
    Wotan Wien
    Hallo, ich habe zwei Sophos im Lab stehen und teste die Version 21. Die DNS- Einträge liegen auf der "Head office" Auf der "Branch office" ist eine DNS-Anfrageroute auf die "Head office" eingerichtet. Das funktioniert, seit Monaten auf der V20…
    • Answered
    • 16 days ago
    • Sophos Firewall
    • German Forum
  • Sophos XGS87 hinter FritzBox Side to Side VPN

    MRXLENN
    MRXLENN
    Hallo Zusammen, ich habe 2 Standorte welche miteinander „verbunden“ werden müssen. Dies möchte ich über einen IPSEC Tunnel bereitstellen. Beide XGS87 sind jeweils hinter einer FritzBox als Exposed Host. Leider bekomme ich eine side to side connection…
    • 16 days ago
    • Sophos Firewall
    • German Forum
  • IPSEC ISSUE || PHASE 2 NOT UP

    SatyabrataB
    SatyabrataB
    Hi, we are trying to configure IPsec tunnel between Sophos and Cisco ASA all configuration phase 1 and phase 2 are matches both sites. phase 1 is up but phase 2 is down i have checked logs below error message we are getting. 2024-12-05 13:15:08Z…
    • Answered
    • 18 days ago
    • Sophos Firewall
    • Discussions
  • Route Site-to-site traffic from (Remote Office A) through (Remote Office B) to Head Office

    Werner Smit
    Werner Smit
    Good Day, We have 2 remote offices with a site-to-site link connecting to Head office. Network config for offices: Head office: 10.x.x.x/16 Remote Office A: 172.16.x.x/16 Remote Office B: 172.17.x.x /17 Have fail-over links connecting both…
    • Answered
    • 18 days ago
    • Sophos Firewall
    • Discussions
  • IPSec VPN - Branch1 to Branch2 connectivity via HQ

    Gary McDonald
    Gary McDonald
    Hello All, I have 2 branch offices and one HQ office. I would like branch 1 to be able to communicate with branch 2 VIA the Sophos XGS appliance in the HQ. Can any body give me any pointers for the best way to achieve this. I know I could connect…
    • 20 days ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS SNAT IPSEC LAN2LAN VPN

    OTWolf
    OTWolf
    Hi, ich hatte eine SG230 und hier einen VPN IPSEC Tunnel zum Kunden. Hier wurde gewünscht, dass unsere Daten nur von einer IP Adresse gesendet werden. Somit hatte ich hier einen SNAT hinterlegt. Die Kollegen haben sich mit einem Service-User per SSL…
    • 20 days ago
    • Sophos Firewall
    • German Forum
  • ipsec cipher zum schutz vor quanten computern

    piddae
    piddae
    Hallo liebe Gemeinde, habt Ihr eine Idee wie wir z.B. unsere IPsecs wirkungsvoll gegen die Angriffe von Quantencomputern schützen können? Was ist da die Best Practice auch im Bezug auf den Zeitraum für einen Schlüssel Tausch, welche Cipher welche…
    • 23 days ago
    • Sophos Firewall
    • German Forum
  • IPSec not trusting self signed Root CA

    Marian Arlt
    Marian Arlt
    I created a certificate based IPSec/IKEv2 Site-to-Site-VPN using the Sophos guides between two Sophos SG135 firewalls. One firewall runs on home edition (SFVH with firmware SFOS 21.0.0 GA-Build169 ) one runs on trial (SG135 with firmware SFOS 20.0.2 MR…
    • 22 days ago
    • Sophos Firewall
    • Discussions
  • Can I create VPN site2site tunnel from XGS as client out to OpenVPN server?

    Andrej Pirman
    Andrej Pirman
    Hi, I cannot find instructions on how, if possible at all, create Site2Site VPN tunnel, from Sophos XGS outbount to OpenVPN server. This is for IP phone service, I created one LAN port for local phones, MASQ via WAN interface....and now I nned to create…
    • Answered
    • 28 days ago
    • Sophos Firewall
    • Discussions
  • Sophos XFRM Frage

    Patrick81
    Patrick81
    Guten Morgen zusammen! Bei meinen größeren Kunden habe ich eine Wartungs-VM. Von da aus komme ich in der Regel an die Sophos Firewalls der jeweiligen Standorte intern über eine Site-to-Site VPN. Das hat bis her auch wunderbar geklappt, wenn ich die…
    • Answered
    • 29 days ago
    • Sophos Firewall
    • German Forum
  • VPN traffic is not passing through the vpn tunnel

    Anesu Dangarembwa
    Anesu Dangarembwa
    Good day l have create a site to site to vpn , the vpn is up , but we cannot ping the branch site On the head office there is ospf configured, and if we trace route from the firewall it's showing that the traffic is going through the ospf vpn of…
    • 1 month ago
    • Sophos Firewall
    • Discussions
  • Verbindung zu Sophos XG von Linux Server ... HowTo gesucht

    mipo
    mipo
    Hallo zusammen, ich möchte von einem Linux Server, der sich im Internet befindet, eine VPN Verbindung (SSL oder IPSec) zu meiner Sophox XG Firewall herstellen. Bisher wurde der sich im LAN befindliche SFTP Server (Telefonanlage) über einen dedizierten…
    • 1 month ago
    • Sophos Firewall
    • German Forum
  • Verständnisfrage static routing

    Christian Niemann
    Christian Niemann
    Hallo Zusammen, ich habe an 3 Standorten XGS Firewalls. A <--> B <---> C A und B sind über eine IPSEC route based VPN verbunden B und C sind über eine Funkstrecke verbunden wie müsste eine statische route auf der Firewall B aussehen…
    • 1 month ago
    • Sophos Firewall
    • German Forum
  • VPN established but XFRM Gateway down on both sides

    Mayuresh Bhagwat
    Mayuresh Bhagwat
    This is an issue that I have seen with multiple customers. The VPN connection as Tunnel interface is established. The XFRM is configured to be non-overlapping in any sense with other IP subnets on the Firewall. Even then the gateway shows down. Here is…
    • 1 month ago
    • Sophos Firewall
    • Discussions
  • IPsec server communication problem.

    Christian Garcia N
    Christian Garcia N
    Good morning. I am having problems with a server when accessing remote servers through an IPsec tunnel. SITE A has to access SITE B's servers and vice versa The problem is that for approximately a week one of the servers at SITE A (192.168.200…
    • Answered
    • 1 month ago
    • Sophos Firewall
    • Discussions
  • VPN IPsec tunnel routing issue

    Haris Alatovic
    Haris Alatovic
    Hello everyone, I have issue with routing over VPN IPsec tunnel. In my setup there are two Sophos XGS116 firewalls running SFOS 20.0.2 MR-2-Build378 located on HQ site and BO site. Each site has stabile ISP connection with static IPv4 address. VPN IPsec…
    • 1 month ago
    • Sophos Firewall
    • Discussions
  • IPSEC VPN Multiple Lan Subnet from Sophos XGS to CISCO: only one subnet works at a time

    Gianluca Maistri
    Gianluca Maistri
    Hi, we're experiencing a problem with Ipsec Vpn (site2site) from Sophos to Cisco. In the Ipsec tunnel we have two subnet (subnet1 e subnet2) at sophos vpn side and one subnet (subnet3) in the remote site managed by cisco. It seems that only on subnet…
    • Answered
    • 1 month ago
    • Sophos Firewall
    • Discussions
  • IPSEC-Tunnel funktioniert nicht seit Umstieg auf XGS

    antonio_esposito
    antonio_esposito
    Hallo zusammen, uns plagen etwaige Probleme seit wir von unserer guten alten Sophos ASG auf Sophos XGS umgeschwenkt sind. wir haben IP-Sec VPN Tunnel kreuz und quer durch ganz Deutschland, IKEv2, Verbindung ist da und es läuft Datentraffic darüber. Probleme…
    • 1 month ago
    • Sophos Firewall
    • German Forum
  • Firewall issue ping

    Daniel Nemes
    Daniel Nemes
    I recently add a new firewall for the branch office , so we have 2 firewalls one for the main office and one for the branch office, branch office can ping our ip's, but we from Main branch we can not ping any of their ip's, not even 1, it's really strange…
    • 1 month ago
    • Sophos Firewall
    • Discussions
  • Site to Site VPN Authentication on reboots - Change PSK works

    Brennan Kostyniuk
    Brennan Kostyniuk
    I have multiple Sophos site to site VPN's back to a central router. Whenever any of the sites losing connection they all re-connect except for 1. The Sophos VPN logs show "Couldn't authenticate the local gateway. Check the authentication settings on both…
    • Answered
    • 2 months ago
    • Sophos Firewall
    • Discussions
  • Firewall behind ISP Router

    ywillie
    ywillie
    Is there a way to check if the ISP router doesn't supports IKE2 causing IKE2 IPSEC tunnel to fail. A troubleshoot method or guide ? This is to proof to Service Providers that the problem lies in their end and not firewall.
    • 2 months ago
    • Sophos Firewall
    • Discussions
  • View related content from anywhere
  • More
  • Cancel
>