• Best Whitelisting Method: Web Policies vs Firewall Rules

    iamroot
    iamroot
    Hello everyone, I'm trying to understand what the best or correct whitelisting method is. Scenario: I need to whitelist URLs for a new application. Method 1: Firewall Rule 1) Create FQDN Host: *.example.com 2) Create Firewall rule Source…
    • Answered
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • XGS office 365 mit interner externe Domain Hybride

    Wesely Achim
    Wesely Achim
    Hallo zsammen, wir haben eine XGS, mit funktionierendem Sophos E-Mail Gateway. Wir möchten auf Office 365 im Hybrid-Modus umstellen. Wir stehen jetzt vor dem Problem, dass wir eine Inderne Domain (.local) und einen öffentliche Domain (.de )haben.…
    • 5 months ago
    • Sophos Firewall
    • German Forum
  • Citrix Netscaler 2FA Not Working with Sophos XG Web Server Protection

    cromwell uy
    cromwell uy
    As with our current Sophos XGS Firewall Rules and Policies configurations, the Citrix Netscaler 2FA authentication is working. We started planning of using the Sophos XG Firewall Web Server Protection. The license required were purchased and registered…
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • Die Zweigstelle nutzt Sophos in der Zentrale als Proxy via MPLS

    Stefan Remde
    Stefan Remde
    Hallo Kollegen, Seit Jahren nutzt die Zweigstelle eines Kunden die Sophos UTM in der Zentrale als Internet Proxy. Das funktioniert(e) auch immer einwandfrei (UTM der Zweigstelle im Browser als Proxy angeben und gut is). Die Zweigstelle ist, unabhaengig…
    • 5 months ago
    • Sophos Firewall
    • German Forum
  • WAF rules to stop certain HTTP methods

    Richard Hamblin
    Richard Hamblin
    Hi everyone, I am trying to find out if I can use the WAF rules to stop certain HTTP methods for connections to one of our web servers. I would like to try to only allow GET and POST and deny any of the others such as "DEBUG", "CONNECT", "PUT", "UPDATE…
    • Answered
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • Send emails to Exchange Online via Sophos XG

    nils50122
    nils50122
    Hello, we have the following problem: Three of our server / applications do not support OAuth for the moment, so we need an locally smtp server inside our network. For the moment we use simple postfix, authenticated users only from specific internal…
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • Exim CVE-2024-39929

    Dustin
    Dustin
    Hello, just a quick question, is SophosOS in the current version vulnerable to CVE-2024-39929? Is there already a workaround or a patch available? nvd.nist.gov/.../CVE-2024-39929
    • Answered
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Firewall XG - Home Edition | Mailanhänge > 500KB werden abgelehnt

    HoneyValley
    HoneyValley
    Hallo zusammen, wir haben erheblich Probleme mit unseren IOS MailClients - bei Zugriff durch die Sophos XG. Ab ca. 500KB - 880KB Anhanggröße werden die Mails beim versenden vom Device Richtung Exchange abgelehnt. Version: SFOS 20.0.1 MR-1-Build342 Webserverschutz…
    • 5 months ago
    • Sophos Firewall
    • German Forum
  • XGS: Ebay Login blockiert

    Revan
    Revan
    Guten Morgen, seit einigen Tagen ist der Login bei eBay mit der folgenden Fehlermeldung deaktiviert: Stop! This Download is blocked. Wenn ich ebay.de auf die Liste der Ausnahmen für die SSL/TLS Inspection setze kann ich mich wieder normal einloggen…
    • 5 months ago
    • Sophos Firewall
    • German Forum
  • Problem with NET::ERR_CERT_AUTHORITY_INVALID still present?

    Andrej Pirman
    Andrej Pirman
    Hi, I have ONE of 3 new installs of XGS-126 having long known problem with Sophos CA certificates on some popular URL addresses. For example, users cannot download Google Chrome: I guess problem is HSTS, where browser detects MITM, which is Sophos…
    • Answered
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • Blocked Website

    WichF
    WichF
    Hello, currently I have a problem with my sophos XGS Firewall. I would like to allow a specific Website for our marketing department. tiktok.com I also add this site to "Allowed URLs for Default Policy" and "Local TLS exclusion list" but nothing happened…
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • Mails not more delivered (MTA-Mode). After service smtpd:restart mails successfully delivered, but also very old from February/March/April

    Erik Wi
    Erik Wi
    Hi there, we had a very interesting problem with our Sophos-Firewall and the mailflow on Wednesday. On 2024-06-26 around 08:00am (UTC+2) no more mails were delivered via our Firewall. All mails were visible in the GUI under "Mail logs", but only…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • WAF Status-Code 413 - ModSecurity: Request body no files data length...

    DVT
    DVT
    Hallo alle zusammen, ich habe seit einiger Zeit Probleme mit meiner XG210 und dem Versand von E-Mails bei mobilen Endgeräten. Im einzelnen geht es darum das wir E-Mails über mobile Endgeräte (Android, Apple) Empfangen und Versenden können aber sobald…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • German Forum
  • Email Rejected, using Protect - Email in XGS

    Stojan Cergol
    Stojan Cergol
    Hello, in the last few days I have noticed that certain emails are not being delivered, and I observed in the Sophos XGS 126 smtp_mail.log that the emails are being rejected. The senders and recipients exist and are known. This issue started occurring…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Versand von E-Mails mit SOPHOS XGS126 über Mail-Transfer-Agent (MTA). Fehler: all hosts for have been failing for a long time (and retry time not reached) (fast alle in China)

    tom2020
    tom2020
    Hallo zusammen, wir haben nach einem Wechsel der SOPHOS UTM auf XGS126, folgende Schwierigkeiten bei ca. 5 Lieferanten (fast alle aus China). Wenn eine E-Mail an die betreffenden Lieferanten geschickt wird, geht die in ca. 50% der Fälle durch (ohne…
    • 6 months ago
    • Sophos Firewall
    • German Forum
  • SMTP Quarantine: cannot delete items via web console due to invalid characters

    Uwe Beierlein
    Uwe Beierlein
    We received an E-Mail addressed to \"?info\"@domain.de and can not delete this entry from the list of quarantined E-Mails via Web-Console. Is it possible to delete this entry using a ssh-session / command prompt?
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • How to protect Exchange OWA from brute force if the server is behind DNAT?

    VitaliiK
    VitaliiK
    Hello, need help for configurate Sophos XGS to protect Exchange OWA from brute force. S erver is behind DNAT
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • An error has occurred in resolving the URL, please update the URL and retry the policy test.

    n4shito
    n4shito
    Greetings community. I have an XGS126 device (SFOS 20.0.0 GA-Build222) I'm trying to do a policy test on google.com, facebook.com, and I get this message: An error has occurred in resolving the URL, please update the URL and retry the policy…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • FILT-APP Block Office365 SOPHOS XGS

    Mathieu Rojo
    Mathieu Rojo
    Hello, I have recently see my officesetup.exe installation blocked when I activated the app-filter based on this policy "Block generally unwanted apps" on my LAN TO WAN firewall rule. This blocked was manifest juste after launch the officesetup.exe…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • PDF gefiltert obwohl in white list markiert - Identische Bestellungen gingen zu anderem Zeitpunkt schon durch

    Mladen-Ilijas
    Mladen-Ilijas
    Hallo, wir haben unsere XGS2100 noch relativ neu und nach einigen Monaten ist es soweit, dass sie meist das tut, was wir von ihr wollen. Jetzt aber folgendes: Ab und zu werden pdf Dateien vom MIME gefiltert. In anderen Fällen kommen diese aber wie gewünscht…
    • 6 months ago
    • Sophos Firewall
    • German Forum
  • email bounced (failing for a long time(and retry time out not reached))

    itinfrastructure User
    itinfrastructure User
    hi i have XGS4300 (SFOS 19.5.4 MR-4-Build71), it is MTA mode, today i start getting bounced email while sending email to few domain R=default_mx_router T=remote_smtp: all host for 'mahagenco.in' have been failing for a long time(and retry time out not…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Which RBL is flagging the email?

    JeffCooper
    JeffCooper
    XGS2300, 19.5.4 We're getting a lot of false positive blocked IP addresses lately. Where in the logs can I find what specific IP address is being blocked (since the message does not arrive I can't look at the headers) and which RBL is blocking it. All…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • WAF non-standard ports: 503 Service Unavailable

    woter324
    woter324
    Hi, I have set up a new Web server protection rule following this guide. Everything works fine using port 80, but when I change the port to 1001, I get 503 Service Unavailable: Web server : IIS (Windows 11). Binding: Type: HTTP, IP address: all…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • TLS Inspection | OCSP / CRL | Not blocking websites with revoked certificates

    Daniel Neto
    Daniel Neto
    Hi everyone, I'm enforcing my TLS inspection rules to more strict and secure with best practices. So my Decryption Profile: Using https://badssl.com/ for tests scenarios I had success in almost all practices: invalid date working as…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • captive portal without login

    Quallensaft
    Quallensaft
    Is there any way to implement a captive portal without any account or guest login? Just a disclaimer -> confirm -> web surfing allowed?
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • View related content from anywhere
  • More
  • Cancel
<>