Hi,
We have total three site to site tunnels. But facing issue only one tunnel that is every morning need to reset that tunnel from any one side.
I have raised a ticket but no solution.
facing issue after upgrade into V21.
Dears
I am currently trying to set up SSL VPN on my SophosXG125 firewall, but I am encountering difficulties connecting without a public IP address.
Could you please confirm if it is possible to use SSL VPN without a public IP? If so, I would appreciate…
After the XG 210 upgrade to SFOS 20.0.2 MR2 build 378 we now have the issue that firewall rules for AD Group VPN Users no longer work for some SSL VPN users belonging to the AD VPN Users group. We know that IPSEC doesn’t work with AD groups but SSL VPN…
Hello Dear ,
I am experiencing an issue while attempting to set up the SSL VPN. When I download the Sophos Connect client from the user portal, the VPN option does not appear in the dropdown menu, preventing me from downloading the Sophos Connect client…
Hello,
we have a customer with IPsec connections. We tried to make the tunnel use a failover group. These are created on the initiator firewalls. If we manually connect the tunnels, they all connect, and traffic is also flowing through them. Sadly…
Hello Team,
I am explaining my case to you in order to receive the best advice from you as Sophos experts. I have my Sophos XG430 SFOS 20.0.0 GA Build 222 in production as a perimeter firewall (I only use 2 WAN ports and 1 LAN), this equipment allows…
Hallo Zusammen,
wir haben ein etwas größeres Problem mit dem SSL-VPN, aber fangen wir mal vorn an. Alles hat damit angefangen, das unsere Geschäftsführung gerne mit ihren IPads von Unterwegs mit ihrer Telekom LTE Karte auf unsere interne Citrix-Umgebung…
Hallo,
gibt es unter der Sophos XGS 2100 eine einfache Möglichkeit den SSL VPN für bestimmte extern User zeitlich einzuschränken? z.B. nur Werktags von 7:00 Uhr bis 19:00 Uhr?
Hi,
I am giving up on this,
I have opened a case with sophos but cannot figure out the issue. I have created a clientless VPN sftp for our server. It always gives me
read: Connection reset by peer
It works perfectly fine with Winscp using the…
Hi all.
site A.
port 1. Lan. 10.10.10.0/24
port2. Wan. 84.153.x.x/32
Site B
port1 .Lan 10.10.20.0/24
port2. Wan 63.84.x.x
IPsec between sites. all resources are accessible from one site to another.
I want all traffic from site…
Hallo zusammen,
leider bin ich mit meinem Latein am Ende.
Die Infrastruktur sieht wie folgt aus:
Standort A: UTM 9
Site-To-Site, Initiert, Striktes Rouing
Lokale Netzwerke:
LAN 1: 10.0.0.0/24
LAN 2: 10.1.0.0/24
Remote Netzwerke:
…
Hallo Zusammen,
ich habe 2 Standorte welche miteinander „verbunden“ werden müssen. Dies möchte ich über einen IPSEC Tunnel bereitstellen. Beide XGS87 sind jeweils hinter einer FritzBox als Exposed Host. Leider bekomme ich eine side to side connection…
When will SFOS support IKEv2 for Remote Access?
I was expecting a technical problem when I tried to enable IPSec RA and it did not allow me to select the default profile. I could not believe, this is not supported on a modern firewall.
Vivek Jagad…
Hi,
we are trying to configure IPsec tunnel between Sophos and Cisco ASA all configuration phase 1 and phase 2 are matches both sites.
phase 1 is up but phase 2 is down i have checked logs below error message we are getting.
2024-12-05 13:15:08Z…
How can I factory reset my sophos red 60 manually using the reset button at the back. Also, is there a way we can access the red device through console or ssh?
Good Day, We have 2 remote offices with a site-to-site link connecting to Head office.
Network config for offices:
Head office: 10.x.x.x/16
Remote Office A: 172.16.x.x/16
Remote Office B: 172.17.x.x /17
Have fail-over links connecting both…
Hello All,
I have 2 branch offices and one HQ office. I would like branch 1 to be able to communicate with branch 2 VIA the Sophos XGS appliance in the HQ. Can any body give me any pointers for the best way to achieve this.
I know I could connect…
Very good to all!!!
Objective: It is needed that the “SSL VPN” connections of the clients, are allowed to connect through “Sophos Connect” through the main_gateway, and in case of failure of this, they can connect through the backup_gateway.
Case…
Hi,
ich hatte eine SG230 und hier einen VPN IPSEC Tunnel zum Kunden. Hier wurde gewünscht, dass unsere Daten nur von einer IP Adresse gesendet werden. Somit hatte ich hier einen SNAT hinterlegt. Die Kollegen haben sich mit einem Service-User per SSL…
Hi,
My employer uses Sophos Connect VPN. I currently use an Intel PC but am looking at changing to an ARM Snapdragon X PC. However I'm not sure whether Sophos Connect is compatible with Snapdragon X.
Sophos "Supported platforms" on this support page…
Hallo liebe Gemeinde,
habt Ihr eine Idee wie wir z.B. unsere IPsecs wirkungsvoll gegen die Angriffe von Quantencomputern schützen können? Was ist da die Best Practice auch im Bezug auf den Zeitraum für einen Schlüssel Tausch, welche Cipher welche…
I created a certificate based IPSec/IKEv2 Site-to-Site-VPN using the Sophos guides between two Sophos SG135 firewalls. One firewall runs on home edition (SFVH with firmware SFOS 21.0.0 GA-Build169 ) one runs on trial (SG135 with firmware SFOS 20.0.2 MR…
Hi,
What's the recommended configuration for clients behind a RED?
We have the the RED in SPLIT tunnel mode and have the Sophos Heartbeat IP included in the traffic sent over the tunnel. Is this right?
We also have a Firewall rule for traffic to…
I'm a pulling my hair trying to figure out why our SSL VPN users all of a sudden cannot access the network resources. For the most part I moved 99% of our users over to IPsec VPN setups but in some cases, like accessing from China, IPsec does not allow…
Hi,
I cannot find instructions on how, if possible at all, create Site2Site VPN tunnel, from Sophos XGS outbount to OpenVPN server. This is for IP phone service, I created one LAN port for local phones, MASQ via WAN interface....and now I nned to create…