• Rock Solid Site2Site crashed after upgrading from 18.5.3 to 19.5 GA on Both Sides

    JuergenB
    JuergenB
    Hi, I had a S2S VPN between a XGS2100 (18.5.3) and XG125 (19.0.1) After upgrading both Sites for 19.5 GA the VPN connection crashes 2-3 times a week. The VPN is up and connected, but no traffic is routed from S2S, only a manual disconnect and reconnect…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS V19.5 - Custom report scheduler mailing issue

    GregKleinhentz
    GregKleinhentz
    HI, i am experiencing a strange error after upgrading to latest version. Custom report scheduler is sending multiple emails for a single daily report - i get 10 mails for a single job over a 2 hour span just after midnight. Deleted jobs and recreated…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos XG 135 - Internet stops working for 10-15 mins

    Dinesh Dighe
    Dinesh Dighe
    Hi All, we are using Airtel ISP ,today i have upgraded its firmware 19.0 to 19.5 now Internet stops working for 10-15 mins. is there any permanent solution for this?
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SFOS 19.5 (virtual appliance) VLAN Problem

    DS7109
    DS7109
    Hi, I'm trying to get my Guest WiFi VLAN working on SFOS. This was previously working fine with UTM9 but since moving to SFOS has stopped working! Running the SFOS virtual appliance in ESXi v8, configured as follows; vSwitch0 contains port groups…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • During upgrade to XGS 19.5 firmware, got more than 70 email alerts for HTTP virus detected

    DG1
    DG1
    While upgrading the firmware on my HA stack of sophos XGS 3100, I got more than 70 email alerts for the HTTP virus detected Alert ID: 8001 with the messages below repeatedly: Malware 'Unscannable' was detected and blocked in a download from crl4.digicert…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • UDP port 1194 closed (started after update to 19.5)

    John245
    John245
    After updating to v19.5 the back-up to the remote location stopped as this was relying on udp port 1194. Internet: Experiabox (DMZ) --> XGS 126 The settings are given below. Any idea how to solve? --- John
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Zone/Network/Devices Relationship

    DS7109
    DS7109
    Hi, I've moved to SFOS 19.5 from UTM9 and having some trouble getting my head around a couple of the concepts. One of them is the Zone/Network/Devices model that SFOS uses; What's the relationship between Zones, and Networks and Devices when creating…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Powershell add and remove Users in SSL VPN Policy via API (Enable/disable SSL VPN Policy)

    Niklas Degel
    Niklas Degel
    Hi, I want to to add and remove Users to/from an existing SSL VPN Policy using an API call on the XG via Powershell. I am using SFOS 19.5.0 GA. The API Documentation and some code I've found online are not very helpful. Can anybody tell me how…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • L2TP Pool too small / Allow leasing IP addresses from RADIUS

    Ben@Network
    Ben@Network
    Hello Community, we have many L2TP-VPN Users and the /24 IP Scope is too small for all our VPN Users. If I read the documentation right, it is not possible to use a lager pool then /24. For us a /23 Pool will fit. Actually, we use a mix of SSLVPN and…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Diffie-Hellman ephemeral vulnerability, CVE-2002-20001, DHeater

    AstaroNBack
    AstaroNBack
    All of our Sophos FW devices are showing vulnerabilities on internal and external interfaces. Is this a false positive, and if not is there a resolution, which will not break core functionality of product? I believe Advisory: OpenSSL DoS vulnerability…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • XGS 136 blocking Dlubal RFEM

    shdan
    shdan
    Hi! I'm new here and this is my first post. I'n running SFOS 19.5.0 GA-Build197 and I have an app (Dlubal RFEM 6.02.0045) being blocked by Sophos XGS 136. In Log Viewer, I can not locate any logs related to this blocking. I know that Sophos is…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Default SSL/TLS inspection rule missing

    kerobra
    kerobra
    Hi there, I recently configured a new XGS3100 active/passive cluster with SFOS 19.5. Everything seemed to be fine, but as I wanted to configure the SSL/TLS inspection (I normally do this as one of the final steps) I realized, that there is missing something…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • How to upgrade a Active / Passive Cluster SFOS V18.5.2 to V19.5 in a Production Environment?

    Guenter
    Guenter
    Hi Community and Sophos Guys. As the title describes, I have to upgrade a Active / Passive Cluster SFOS V18.5.2 to V19.5 in a Production Environment. This Production Environment uses XGS2100 as hardware, and have a maximum of 24h hours for a downtime…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • XG 19.5.0 GA....where is the wireless protection log?

    alan weir
    alan weir
    Just installed the XG 19.5 GA, software .ISO and am going through the log viewer and I see no wireless protection logs. I have an AP that is configured and active, but I am perplexed by the lack of wireless logs.
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • XGS2100 to 19.5 fail- Red Interface- DGD-"stopped"

    Charles Cook
    Charles Cook
    I started this update this morning around 10am (14 hours ago). I was running 19.0 with no issues. I have the XGS2100 with the 4x 10Gb SFP+ Flexi_port module. I have 2G fiber in my A2 (SFP+) then in Port2 (1G) I have a coax modem as my backup. A1 (10G…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Denied packets when accessing Sophos XG GUI

    Kyle Hesser
    Kyle Hesser
    Working with Sophos XGS 126. Whenever I access the Firewall's GUI, which I can access fine, I notice that multiple Denied Packet are being logged. I am not sure if this is normal behavior, and I haven't noticed this before we updated to the SFOS 19…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • API 19.5 like not working

    Sumer Eskicioglu
    Sumer Eskicioglu
    The like filter works in all versions prior to SFOS 19.5.0 GA-Build197 and not only in IPHost search. It works in IPHostGroup, Services and other object searches. example is as follows. <Request> <Login> <Username>admin</Username> <Password>adminpassword…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • TLS engine error: FLOW_TIMEOUT through IPSec Remote Access Tunnel

    Markus Ottmann1
    Markus Ottmann1
    Hello community, we are facing a strange behavior since we´ve updated our XGS4500 to SFOS 19.5.0 GA-Build197 . Some website are not fully accessible through IPSec Remote Access Tunnel (via Sophos Connect Client). The first line of the above SSL…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • How to setup L2TP Client VPN and OSPF routing in SFOS 19.5?

    Ben@Network
    Ben@Network
    Hello Community, I have a working L2TP VPN dialup and a working OSPF routing over our site firewalls. From the L2TP network I can reach all local networks (connected to the firewall itself), but I can't reach any network in the site locations. I figured…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • No SSL certifcate Captive Portal

    Sophos User1152
    Sophos User1152
    For some strange reason the XG running 19.5.0 is not hosting a SSL certicate for the captive p ortal. For the Firewall adm in console itself it's working fine. I have already tried re-adding the certificate without any luck. SSL Admin settings …
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Guest Network - XG port 8090 (IPS error messages) not accessible

    Nathan_K
    Nathan_K
    I have my network segmented and am using web filtering on our GUEST network to ensure that certain content is not accessible to visitors or my kids. I have Captive Portal enabled in Administration on my GUEST network, however; when a someone tries to…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • VM XG 19.5 pppoe ipv6

    Paolo Skizzo3000
    Paolo Skizzo3000
    Hi, my provider ISP provide me a PPPoE Dual Stack WAN connection. Using a Linux PC is possible to get IPv4 and IPv6 IPs with the same PPPoE connection and works perfectly. In VM XG FW v19.5 Port 1 configuration is WAN with IPv4 PPPoE and works…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Multicast-Routing for Phone-System

    SM-ITM
    SM-ITM
    Hello Everyone, one of our customers has a phone system (Panasonic KX-NS700) that uses multicast to synchronize the Cell-Stations (KX-NS0154). The Cell-Stations (DECT) use PTP for synchronisation.There is one Master and several Slave-Stations. Although…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG 125 - can't update second firmware to SFOS 19.5.0 GA-Build197

    Francesco Marciello
    Francesco Marciello
    Hello Following situation: I can update the first firmware (to 19.5.0 GA-Build197). But when I want to update the second firmware to 19.5 as well (from SFOS 19.0.0 GA-Build317), I get the following error: "New firmware could not be uploaded. Please…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Web authentication through captive portail fail after few minutes

    GaelRAYNAUD
    GaelRAYNAUD
    Hi all. I'm currently facing a problem on an XGS2100 where AD authentication & SSO through Web auth are enabled and working. Just for a few minutes... Next step on every single client (Windows, Android but not iOS) is lose of connectivity and need…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • View related content from anywhere
  • More
  • Cancel
<>