For logistic reasons I have configured TWO DISTINCT Sophos UTM on my company: SOPHOS UTM1 (servers): - Internal network 172.16.11.111 (internet DNS server, File server, etc.) - DMZ1 (Internet authoritative DNS servers) - DMZ2 (FTP servers) …

Do I simply set UDP instead on TCP in the Settings? I tried this and it didn't work? Is SSL VPN the not secure, and quickest method? We have end users report the connection to the VPN is really slow - much slower than their local ISP connection. …

To any who can help. when using SSL/IPSec remote access, are the clients isolated (or can they be Isolated) from each other? I thought they were isolated when using SSL (not sure about IPSec), but am unable to find the information. Any help app…

Hello Community, you helped us quite a lot by just reading about similar problems and getting qualified answers to past problems. Thanks for that. So i've been googling and trying to find an answer to out latest "problem". I got the task to implement…

Hi guys, I have a site to site ssl vpn connection that is working great. I have an SG105 that captures all traffic (lan or wan) from its clients, and forwards it on to an SG310 at our main office. When the tunnel fails, I want devices on the SG105 to…

I want a specific user only to connect to some devices when he is connected to the network with vpn. I create a new SSL VPN profile, and only add this user and de devices in the network section. When I started I used the automatic firewall rule option…

I'm using the Sophos SSL VPN Client to connect to my work computer from home, but I also want to make some large downloads on my home internet connection. I'm aware that the way to do this is via Split Tunneling, but I've been unable to find any clear…

Hi Folks, I think I would find the Answer in the UTM Manual, but if someone knows the Answer, that would help very much -> I don't need to search then. My Question is: if I create an VPN Tunnel (tun0) to eg. openvpn for all the Traffic / surfing…

Hi all, I have a problem in UTM9 where one user keeps getting kicked off the VPN frequently. This seems to be isolated to this user. We use AD authentication and I have deleted and re-added the user in authentication services. I've also re-downloaded…

Trying to find ways to not automatically disconnect SSL VPN after a certain inactivity. Have modified client ssl vpn config file and inserted: ping 10 ping-exit 30 According to the log, the tunnel is disconnected by the UTM due to inactivity, and…

So I have successfully been able to establish a ssl site to site between two offices. I have added the local networks from each site to the ssl config and can see the firewall rules have been auto added. However I'm not able to reach some workstations…

We have a group of users connecting into the UTM via SSL VPN. They then RDP to our RDS Server and connect to the session hosts to work. Is there a way to have the internal\external website open up automatically after successfully connecting to the…

I am new to VPN kindly help. I downloaded ssl-vpn.exe package from the user portal which was already setup by someone else and when I installed it on my windows machine ( C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\config ) following files…

Hi, We currently have a SSL-VPN profile for remote access with predefined certificates from Sophos.But I dont understand the way the certificates work in them. Is it possible to generate different security certificate for different VPN profile? …

Hi, I set up a SSL VPN according to this guide: https://www.sophos.com/en-us/medialibrary/PDFs/documentation/utm90_Remote_Access_Via_SSL_geng.pdf I can connect to the network just fine, but I don't see anything or can ping the pcs or servers. Ipconfig…

I'm new to firewalls so keep that in mind if I seem like i don't know what I'm doing. I'm setting up a SSL VPN for my company and I can't connect to my public ip. Whenever I try, i get a timeout. When I'm inside the internal network I can connect to…

I am trying to connect SSL VPN from AWS VPC to SSL VPN (UTM) On-Prem Network. The SSL VPN client (on-prem UTM) is not able to connect to SSL VPN Server UTM. Its failing and trying to reconnect without any success. The SSL VPN has been configured on TCP…

Hi all, Firstly, I've seen many other posts with similar issues but no real resolution to this reported slow performance between S2S links...but please correct me if there is! My Setup: 1 x Sophos UTM 120 (9.506-2) (200/12mbps) (Virgin Media Modem…

Good Morning, We had a strange problem with our firewall this morning. We could not access the internet from within our network (web page could not be displayed) yet I could ping the websites both by their IP and their url. I could also ping the firewall…

Hi all, I am having issues with OpenVPN Connect after updating OpenVPN to 1.2.6. It will connect then drop out randomly, but still appear to be connected once dropped out. When you turn the VPN off and back on it works until it drops out again…

Hi, I was asked to configure Sophos UTM for VPN usage with OTP and IPAD . Someone successfull with this Task? Which VPN-type is usable? I need some hints how to accomplish this.

Hallo community wir setzen bei uns an einem zentralen Internetbreakout ein Sophos SG 330 Cluster ein. Auf unseren Clients nutzen wir den Sophos SSL Client ein. Wir haben derzeit immer wieder das Problem, das wir Clients nicht erreichen können…

Hallo Ihr lieben, ich habe folgendes Problem: DSL --> Fritzbox(LAN)192.168.0.1 --> Exposed Host --> Sophos eth0 (WAN)192.168.0.2 Sophos eth1 (LAN)172.17.2.1 --> Sophos übernimmt DHCP für Clients Sophos eth2 (DMZ)10.0.0.1 --> Sophos übernimmt DHCP…

My configuration is this: Remote Access > SSL > Profiles: Users and groups: test.user Local networks: Internal (Network) Automatic Firewall Rule: Enabled VPN Settings: Interface Adress: Any Protocol: TCP Port: 4442 (we use 4443 for a different NAT translation…

Howdy :) I'm a recent convert from PFSense. I now use Sophos UTM 9 (9.506-2) on the same hardware (Supermicro A1SAi-2750F - so an Atom C2750 SoC) I have a 100/100 Mbps Internet link. Everything works very good, as expected. Everything except Remote access…