Good morning! I try to set up IPSEC with DN Match policy through Windows 11 built-In VPN. I configured it on the UTM and on the client, but no connection request is incoming on the UTM, I'm a bit confused. Checked the firewall and the IPSEC logs, but…

Hi, I might share config comparison of VPN Site-To -Site IPSec VPN tunnels between Sophos SG (also newer Sophos XGS below) and Draytek Vigor 29xx series routers. It was some trial and error guessing game of all parameters, but finally I matched them…

Hi everyone, I have a challenge managing two firewalls (FW1 and FW2) in two different data centers (DC) that are far apart. In DC1, I use FW1 for IPSec tunnels with my clients. I want to add some details: We don't plan to use a FW cluster. We…

I am currently using an IPSEC vpn connection between my Sophos SG and my UDM-PRO, but the performance is ridiculously slow. I am getting 2.75 MBit/s at best with the Sophos sitting on a 100/100 MBit/s line. The UDM-PRO sits on a 900/40 MBit/s line. …

The Problem was first described here : Remote Access via IPSec, Client connected but not receiving packets Currently running Version 9.713-19 of the Sophos UTM 9 SG550 Firewall. Client IPSec version is the latest available : 2.2.75 NAT-Traversal…

HI, is it possible fot otp to be also activated for L2TP O IPSEC remote access vpn? We've got a customer who is requesting give question above, however since its not shown in the otp availabe sections, i dont think its possible. Or does it account…

Hello Guys, I am currently trying to setup two different IPsec VPNs. The first one is to simply connect to our Network and the other one is to route all traffic threw the firewall, if you are in a cafe for example. So far so good. They both work…

Hi, to make this short. I want three sites (each with own subnet and uplink) to reach each other site-to-site with ipsec vpn. Is it possible and how? I know it is pretty simple to have one main site and connect several sites to this main site. But how…

Hi All, Currnelty Running a UTM Version 9.7115-5. I've added some associate company sites to a Site-To-Site IPSSEC tunnel. We have the tunnel established and running fine with the "automatic Firewall Rules... However..... 1. Id' like to restrict…

I've had a working site-to-site IPsec VPN working for years but a few days ago a blackout took out one of the Sophos UTMs and so I find myself configuring it from scratch and I have been at it for a day with no progress. Two Sophos UTMs -- connecting…

Dear Sophos Workers, i have the following configuration: Sophos SG direct connected to the internet Sophos XGS behind a Tkom Digibox. Which cipher suites would you take, to establish a stable connection? Greetings Piddae

The client can conecct to the VPN from Windows but the problem is even he can ping, can't resolve the domain, anyone seen this before?

Hi, at the moment we have an IPSec VPN setup (and it's up and basically green). On our local side we have several VLANs defined, like 10.1.10.x/24, 10.1.20.x/24 and so on. Basically all of our local networks are defined within 10.1/16. On the remote…

Hello, we have a Sophos UTM 9 SG550 running on latest Firmware 9.709-3. We are using Sophos Connect VPN Client version 2.1.20 ( latest ). We have Remote Access IPSec setup but for some reason some clients when connected ( from their Home ) will not…

Can we change the timeout for a specific Remote Access-->SSL user.

Customer is randomly losing connection and I see this type of error message on IPSec VPN logs, any idea what is causing them? Informational Exchange message is invalid because it has a previously used Message ID Quick Mode I1 message is unacceptable…

We have an SG230 UTM and we're using L2TP/IPSec VPN to allow remote users to connect to the network. This has been working flawlessly for about 2 years now but we've suddenly started having issues. When trying to connect from Windows clients we get…

Hello everyone, i am attempting to setup a Site to Site VPN connection by using IPSec with a preshared key. I've seen videos and guides on how to setup IPSec Site to Site which ( i think) was pretty straight forward on Sophos UTM. After setting…

Hi Everyone, I am trying to setup a site to site VPN from my Sophos firewall to Zscaler. I'm trying to follow the Zscaler Guide ( https://help.zscaler.com/zia/configuring-ipsec-vpn-tunnel ) as much as possible with no success. While I do see the IP…

Hello, I have a problem I cannot solve on my own: I need a IPSec VPN access to our network (192.168.0.0/24 ) behind our Sophos UTM (192.168.0.10). On our Network I need to access a certain server (192.168.0.90) with a fixed IP Address originating…

Hello, I have configured VPN Server on Sophos UTM over IPsec on S2S. When i connect to the server using OpenVPN Client on my windows laptop, and run Extended test to check for DNS Leaks - http://dnsleaktest.com/ - I can see DNS servers and server…

Going off this previous thread: https://community.sophos.com/utm-firewall/f/general-discussion/124719/ipsec-performance I see this is being investigated under NUTM-12421 but that was 6 months ago and I can't reply to that thread. Was there ever…

Hi, I have an HA SG450 UTM 9 Pair running firmware version 9.705-3 in Active-Passive, on these there is an IPSec Site to Site setup with 1 local network (SNAT) and 10 remote networks which is working great. I want to add another local network behind…

I have a weird issue. I run an SG in our datacenter, with approx 9 tunnels to my clients (all SG or XG) and approx 30'ish ssl vpn remote access' There is one client with an SG who's tunnel seems to stop send through traffic every couple of days/weeks…

Hello, I am stuck with my 3 UTM9s installed in 3 sites. I want to configure S2S VPN Azure to UTM9 with Route Policy and it won't pass the connection. Can someone help me to do this configuration on UTM9 side? Does it support Route Policy? It's…