Good morning everyone, I configured the BGP over RBVPN between our office and the 2 connectivity present at one of our customers (fiber and radio link), the connection is made via the prepend AS also tried with LOCAL PREF AND MED, if I try to switch off…

Hi all, I meeting a client tomorrow to tshoot his bad experience with internet connection speed when connected to Remote SSL VPN. I'm not an expert so I've made some research and found few things that I check/test. Appreciate any advise that could…

Hi Sophos Community, I was wondering for a while why some of our customers couldn't reach the Lastpass website. Now I have discovered that its being blocked by application filtering with filter "Block high risk (Risk Level 4 and 5) apps". I am aware…

Hello guys, we have a Sophos XGS 3300 cluster (1 9.0.1 MR-1-Build365) and are using Sophos Connect Client for our HO users. All users have an IPSEC and and a SSL VPN profile in the connect client. In the future we want to use the provisioning file …

Hi, I want do delete the two default work hour profiles below and found a bug: SFOS 19.0.1 dows not allow me to do that: Schedule could not be deleted. Schedule already in use. I could not find it anywhere. The config export then showed…

I've downloaded the SW-19.0.1_MR-1-365.iso from this page: www.sophos.com/.../firewall-installers Just now I noticed that there is also a 'Common Criteria' version - SW-19.0.0_GA-317.iso - available. My goal is to setup and run Sophos XG on my Intel…

Hi Can anyone help with the system graph wan zone Total upload/download data transfer report. The index uses KBits/s which leads me to believe this report is a bandwidth usage report. However, if I run a weekly report I get a Max download of 15,393…

Hello, I want to change users of all OTP tokens on all of our firewalls because of domain change. Users with new domain already exists on the firewalls and I can change them manually via web GUI, but as we are talking about hundreds of tokens here,…

I have a Site to Site (XG is server) and before upgrade all work for year. After upgrade randomly (i think this happen on night for some sevice restart maybe?) the firewall not use the Tunnel to Route the traffic The VPN is working from the other…

Hi. I'm running SFOS 19.0.1 and are currently migrating my mail. We have our own antispam (Xeams) placed in our DMZ and have no subscription for Sophos antispam solution. I really need some guidance on howto make Sophos work with an existing antispam…

Hi, We use AD SSO and Ketboros and everything is working fine however we are getting this message in the logs 'Cannot establish NTLM authentication channel with xxx' Message ID 17945. What is this and how can we stop it please ? Many thanks …

Hello, XG210 (SFOS 19.0.1 MR-1-Build365) I setup an SSL VPN profile, while using a backup/failover IP (so I could configure remotely) Now, each time I download the config file, it chooses to use failover IP instead of the main WAN IP. The only…

Hi; My red device is installed as standard/split and is connecting to sophos. Uplink is green. Split networks defined. At the same time, the departure and return rules are also smooth. But i have a different problem. When I ping the RED's local…

Hi there We're trying to set up a High availability environment (active-passive) using this documentation: https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/HighAvailablityStartupGuide/HAConfiguration/HAQuickHAConfigureActivePassive…

Hi, We are getting "Invalid Traffic" in Log viewer for some Ports from DMZ to WAN. The firewall rules are configure correctly, can anybody help to resolve the issue. Thx, Ashfaq

XG210 (SFOS 19.0.1 MR-1-Build365) Hello, I have to create a lot of static routes and would like to do this via SSH. When I create a static route via "ip route add 10.xxx.xxx.xxx/24 via 10.xxx.xxx.xxx" it is clearly visible in the overview "route…

Hello, i hope that i can find some one can help me. I working Sophos XGS2100 (SFOS 19.0.1 MR-1-Build365) with Sophos Access points. the system works good but as a new customer and user in Sophos Wold i need a help. in some rooms we have Cast connected…

Can Sophos confirm please that SFOS 19.0.1 is still not able to detect staggered group membership of a Active Directory? Because that is what I noticed yesterday. I tried to use a top level group that contains sub-groups for Firewall rules. If the user…

XG or XGS with SFOS 19.0.1 is IPSec Site-to-Site Tunnel initiator. The other side is responder. Issue: Whenever I change the IPSec connection e.g. add a host or network object, change something in the securitysettings, the tunnel will terminate and…

Reporting does not work. I reviewed the reportmigration.log, and it seems like the report migration has never worked. The reportdb service is running, the disk space is fine, we have even run a manual purge of all log data. how can this be corrected…

An XG106 with SFOS 19.0.1 has a unchanged VPN Tunnel to a SG Firewall. The tunnel is up and communication through the tunnel is possible. But since the last Firmwareupgrade of the SG Firewall (9.712-13) , the XG is producing Gigabytes of errors and…

Hi everyone! We are using a Sophos XGS2300 (SFOS 19.0.1 MR-1). We uploaded a pfx-certificate to the WAF which specifically included only the webserver certificate itself and its intermediate certificate. But, when we check the site with a tool like…

Good Monring, I've an XGS v19.0.1 and want to set an Application Filter (AC) on top of existing Firewall rules. But i'm not sure if i'm understanding how this mechanism is working. My fw-rule is from "serveral internal zones" with "several defined…

Hello, I am running with Sophos XG210 (SFOS 19.0.1 MR-1-Build365) . There is Request Entity Too Large error is still existing when I download file larger than 1 MB from WAF protected website. Here's the error message. ========================…

Hey there, We've got a weird issue with one application failing because it looks like the XG isn't forwarding the TLS packets appropriately on one link. A: XG135 (SFOS 19.0.1 MR-1-Build365) 10.109.10.250 B: XG330 (SFOS 19.0.1 MR-1-Build365…