Hallo zusammen, ich stehe derzeit vor einem Problem was für mich noch nicht ganz schlüssig ist. Wir haben eine Sophos UTM 9 bei uns im Einsatz. Nun zu meiner Situation: Wir mussten unseren Datenbank Server aufgrund von Ressourcen Mangel auf einen…

Hi, one of our remote SG is currently pushing all it's own system generated traffic into the IPSec tunnel to HQ with one of it's WAN Interface IP's. This is SMTP, SNMP, Syslog, LDAP, RADIUS.... The traffic is sent into the tunnel with source IP…

Hi We upgraded to 9.705-7 just a couple of weeks ago and had an issue with an existing SNAT rule that stopped working. I logged a call with support and about 6 hours after logging the call the rule suddenly started working again. we have now noticed…

I'm trying to establish a reliable VPN connection from a cloud VPS (CentOS7) to my Sophos UTM. The purpose is for taking a Veeam Linux Agent backup of the VPS. The backup destination is a Veeam B&R repository on the local network (192.168.1.0/24), behind…

Hi there, i have problems with some, but not all, ip phones not registering with an external sip provider via snat. The snat rule looks like this: DMZ-Voip (network) --> any --> any | SOURCE TRANSLATION: one of our public IPs. (For the sake of simplicity…

I`ve client who wants to route specific websites over IPsec tunnel connecting to Mikrotik router. I have done this on Mikrotik routers and its pretty simple there but in Sophos UTM 9 it seems like there is something specific that is required but im missing…

Dear Helpers, we need to use SourceNAT for our new VPN connection to a client. The VPN connection requirement sheet is attached. The VPN connection is successfully established. For some reason the SourceNAT is not working. Our client asked us to use SourceNAT…

Hi, I need to set up a way to route specific traffic from one server out through or to show as an additional public address that we have set up but cannot seem to figure out where to set it. It always seems to show as the main IP address of the interface…

Hey Guys, I have two UTM's running 9.414-2 connected with a S2S IPSEC tunnel, I'd like to be able to route traffic from site {B} to Gateway [2] is this possible? (I do not have access to gateway [2]* it will only allow traffic from the 192.168.1.0…

Hello, I would like to replace all my masquerade rules with Source NAT (SNAT). This has already been done for several internal subnets and appears to work fine. We do not use dynamic external IP addressing so I believe there is no need for masquerade…

My problem is very simple. I have two ISPs with 5 static IPs each. Under normal circumstances I send all inbound and outbound traffic out of my primary ISP. I have DNATs and SNATS configured to utilize my additional IPs for both ISPs. (specifically for…

So i have no other choice but to post here ans hope for the best. I have Sophos UTM9 on an ESX server at my house and at my buddies business. Both locations are behind a NAT router, my home setup has a ZyWall SUG20 as the main gateway/router. I (so…

Hello Sophos community, I am trying to configure a source NAT for an internal server. I want the server to be known on the outside as one of my additional addresses, like so: LAN_SRV --> Using Any Service --> Going anywhere Translate source…