Hi, What's the recommended configuration for clients behind a RED? We have the the RED in SPLIT tunnel mode and have the Sophos Heartbeat IP included in the traffic sent over the tunnel. Is this right? We also have a Firewall rule for traffic to…

Hello, we performed a firewall migration from an XG450 model to the XGS4500 model last weekend. The firewalls are in a HA configuration. The migration process worked seamlessly. The primary firewall is working with no issue, all services started. To…

I could not figure out the details about traffic matching critera and further filtering within firewall rules. Can someone clarify what will happen if you select "Match known users" and "Block clients with no heartbeat"? Will the rule block no heartbeat…

Our firewall rules with block clients with no HB and green HB only enabled, blocked this client today during the HB status on the firewall was reported as green. I cannot see a reason - any idea? I don't like to create special rules for this client. The…

Heartbeat is always a bit tricky here. As we have several rules with block clients with no HB, the impact off technical heartbeat issues is always high. Endpoints have the latest official Client versions from Central. Currently 2024.2.3.4.0 For…

Hello all, I've had my XG Home appliance setup and registered since Sept 1, 2023 without issue, everything was green on the dashboard\home page. Today, these two services are stopped and refuse to start stating that I need an Intercept X license…

Guten Morgen, ich nutze seit kurzem auf meinen Endpoints Intercept X Advanced. Meine Firewall ist die XGS136. Alle Endpoints werden mir im Dashboard der Firewall als verbunden beim Security Heartbeat angezeigt. Muss ich jetzt da noch irgendwas einstellen…

Hello, I've recieved a request from a client asking to change the message from this notification whenever a user that is connected to the cabled network and changes to the Wi-Fi network. I'm not sure if the message is being sent by the Firewall…

We have remote users to connect to a Sophos SSLVPN. We then create the following filewall rule between them and the servers to ensure that they have Sophos AV installed and that there are no issues on either side. Unfortunately, when we do this, no-one…

Hi, we are using HB policy for Lan user. VPN user how to create secure security policy because now we are using any any so i need to change. Is it possible to enable HB policy in VPN. VPN-LAN LAN-VPN Thanks SATYA

Hi, i'm actually setting up Sophos Heartbeat on a Sophos XG135 (Cluster). We're using Sophos Intercept X and Sophos Connect (SSL-VPN) on our clients. My setup with heartbeat used in firewall rules at our HQ seems to work without any issues; but i…

Hallo in die Runde, entschuldigt die evtl. etwas einfache Frage. Ich möchte gern der den LAN-Netzwerkverkehr eines Nutzers blocken, wenn sein Heartbeat nicht "grün" ist. Ich habe bereits Regeln angelegt, für den Verkehr zwischen LAN und VPN / RED…

Just wondering, I have an 19.5.3 HA cluster Node 1 shows 5 computers with missing heartbeat. 2 are over 100 days old. Now after switching HA nodes manually (Node 2 manually rebooted first) Node 2 shows only 3 computers, all are older than 100…

Is there any way to create a policy so hosts that are not in compliance cannot access the internal network? Example: If the host does not have AV and CrowdStrike installed and active, access to the internal network or VPN is not allowed, therefore,…

We have a rule that is configured with heartbeat like this: A device had heartbeat days ago but currently has no heartbeat. XG430_WP02_SFOS 19.5.3 MR-3-Build652 HA-Primary# ipset -L hb_green |grep 172.16.xxx.xxx XG430_WP02_SFOS 19.5.3 MR-3-Build652…

Hi, is it possible to configure a client having Intercept X installed to allow connecting to the sophos gateway via VPN only when Intercept X is running on that client? Can this be configured somewhere? This is a form of NAC (Network Access Control…

We have a firewall rule allowing access to an internal server. Source and Destination HB must be green, also the rule has "Block clients with no heartbeat" enabled. The rule exists unchanged for years but recently we noticed users complaining that they…

Hallo, Wir haben aktuell die Überlegungen Connections von extern in der Firewall zusätzlich mit Heartbeat zu prüfen und Clientszugriffe ohne Heatbeat zu sperren. Hier haben wir festgestellt, dass das zu unstabilen Verbindungen führt. Ist diese…

Hi, replaced SG with XGS. At Firewall within " Security Heartbeat" i see connected users. But no user information within Firewall rules. If i enforce users for webFilter, they got the captive portal. What did I miss? THX

Hallo zusammen, wir haben aktuell das Problem, dass sich unsere Endgeräte auf denen eine Sophos Endpoint installiert ist, bei jedem Wechsel des Sophos APX Access-Points einen erneuten Heartbeat Connect bzw Disconnect durchführen. Das hat zur Folge…

Hi, We have two firewalls configured on same central account. What we would like to do is connect sophos end points and send HB on firstl firewall but if somehow they first firewall goes down the users will connect on the second firewall through IPSEC…

We have deployed a bunch of RED devices at some users homes as a permanent WFH solution. The RED devices are put into the "VPN" zone and we have a firewall rule that says LAN -> VPN all services allowed then another for VPN -> LAN all services but requires…

We notice strange Heartbeat issues this week when users of one department started desk sharing. Users have indiividual notebooks with Intercept-X. The Network is connected to XG firewall SFOS 19.0.1. DHCP Server on the Network. XG gets the Heartbeat…

I have an XGS 3100 firewall. In the Control Center, I see Connected Remote Users and Liove Users. Everyone in the former group appears in the Live group, but the Live Users group contains one or more "Heartbeat" users. I don't know why they are there…